Upstream information
Description
Mozilla Firefox 3.0.7 on Windows 7 allows remote attackers to execute arbitrary code via unknown vectors related to the _moveToEdgeShift XUL tree method, which triggers garbage collection on objects that are still in use, as demonstrated by Nils during a PWN2OWN competition at CanSecWest 2009.NVD CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Novell/SUSE information
Novell Bugzilla entry: 465291, 488955 SUSE Security Advisories:- SUSE-SA:2009:022, published Mon, 20 Apr 2009 11:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|