Vulnerability Description
Multiple unspecified vulnerabilities in Fenrir Inc. ActiveGeckoBrowser 1.0.0 and 1.0.5 alpha, a module for the Sleipnir web browser, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to the Gecko engine.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fenrir-Inc | Activegeckobrowser | 1.0.0 |
| Fenrir-Inc | Sleipnir | 2.5.10 |
References
- http://jvn.jp/en/jp/JVN67120749/index.html
- http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000025.html
- http://www.fenrir.co.jp/blog/2010/06/activegeckobrowser.htmlVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59493
- http://jvn.jp/en/jp/JVN67120749/index.html
- http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000025.html
- http://www.fenrir.co.jp/blog/2010/06/activegeckobrowser.htmlVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59493
FAQ
What is CVE-2010-2420?
CVE-2010-2420 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple unspecified vulnerabilities in Fenrir Inc. ActiveGeckoBrowser 1.0.0 and 1.0.5 alpha, a module for the Sleipnir web browser, allow remote attackers to cause a denial of service (crash) and pos...
How severe is CVE-2010-2420?
CVE-2010-2420 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2420?
Check the references section above for vendor advisories and patch information. Affected products include: Fenrir-Inc Activegeckobrowser, Fenrir-Inc Sleipnir.