{
  "threat_severity" : "Critical",
  "public_date" : "2010-10-19T00:00:00Z",
  "bugzilla" : {
    "description" : "Mozilla buffer overflow and memory corruption using document.write",
    "id" : "642277",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=642277"
  },
  "cvss" : {
    "cvss_base_score" : "6.8",
    "cvss_scoring_vector" : "AV:N/AC:M/Au:N/C:P/I:P/A:P",
    "status" : "verified"
  },
  "details" : [ "Stack-based buffer overflow in the text-rendering functionality in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a long argument to the document.write method." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2010-10-19T00:00:00Z",
    "advisory" : "RHSA-2010:0782",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "firefox-0:3.6.11-2.el4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2010-10-19T00:00:00Z",
    "advisory" : "RHSA-2010:0782",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "nss-0:3.12.8-1.el4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2010-10-19T00:00:00Z",
    "advisory" : "RHSA-2010:0782",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "firefox-0:3.6.11-2.el5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2010-10-19T00:00:00Z",
    "advisory" : "RHSA-2010:0782",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "nss-0:3.12.8-1.el5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2010-10-19T00:00:00Z",
    "advisory" : "RHSA-2010:0782",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "xulrunner-0:1.9.2.11-2.el5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2010-11-10T00:00:00Z",
    "advisory" : "RHSA-2010:0861",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "firefox-0:3.6.12-1.el6_0"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2010-11-10T00:00:00Z",
    "advisory" : "RHSA-2010:0861",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "xulrunner-0:1.9.2.12-1.el6_0"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2010-11-17T00:00:00Z",
    "advisory" : "RHSA-2010:0896",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "thunderbird-0:3.1.6-1.el6_0"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2010-3179\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-3179" ],
  "name" : "CVE-2010-3179",
  "csaw" : false
}