{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SeaMonkey 2.0.3.","product":{"name":"Firefox","vendor":{"name":"Mozilla","scada":false}}},{"description":"Mozilla Firefox versions ant\u00e9rieures \u00e0 3.0.18, 3.5.8 et 3.6 ;","product":{"name":"Firefox","vendor":{"name":"Mozilla","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mozilla Firefox. Leur\nexploitation permet notamment l'ex\u00e9cution de code arbitraire et le\ncontournement de la same origin policy.\n\n## Solution\n\nSe r\u00e9f\u00e9rer aux bulletins de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2010-0162","url":"https://www.cve.org/CVERecord?id=CVE-2010-0162"},{"name":"CVE-2009-1571","url":"https://www.cve.org/CVERecord?id=CVE-2009-1571"},{"name":"CVE-2010-0159","url":"https://www.cve.org/CVERecord?id=CVE-2010-0159"},{"name":"CVE-2009-3988","url":"https://www.cve.org/CVERecord?id=CVE-2009-3988"},{"name":"CVE-2010-0160","url":"https://www.cve.org/CVERecord?id=CVE-2010-0160"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2010:0112 du 17 f\u00e9vrier 2010 :","url":"http://rhn.redhat.com/errata/RHSA-2010-0112.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2010:042 du 19 f\u00e9vrier 2010 :","url":"http://www.mandriva.com/archives/security/advisories?name=MDVSA-2010:042"},{"title":"Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA2010-01 du 17 f\u00e9vrier 2010 :","url":"http://www.mozilla.org/security/announce/2010/mfsa2010-01.html"},{"title":"Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA2010-03 du 17 f\u00e9vrier 2010 :","url":"http://www.mozilla.org/security/announce/2010/mfsa2010-03.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Ubuntu USN-896-1 du 17 f\u00e9vrier 2010 :","url":"http://www.ubuntulinux.org/usn/USN-896-1"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora FEDORA-2010-1727 du 19 f\u00e9vrier 2010 :","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.html"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora FEDORA-2010-1936 du 20 f\u00e9vrier 2010 :","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA-1999 du 18 f\u00e9vrier 2010 :","url":"http://www.debian.org/security/2010/dsa-1999"},{"title":"Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA2010-02 du 17 f\u00e9vrier 2010 :","url":"http://www.mozilla.org/security/announce/2010/mfsa2010-02.html"},{"title":"Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA2010-05 du 17 f\u00e9vrier 2010 :","url":"http://www.mozilla.org/security/announce/2010/mfsa2010-05.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Ubuntu USN-895-1 du 17 f\u00e9vrier 2010 :","url":"http://www.ubuntulinux.org/usn/USN-895-1"},{"title":"Bulletin de s\u00e9curit\u00e9 de la fondation Mozilla MFSA2010-04 du 17 f\u00e9vrier 2010 :","url":"http://www.mozilla.org/security/announce/2010/mfsa2010-04.html"}],"reference":"CERTA-2010-AVI-082","revisions":[{"description":"version initiale.","revision_date":"2010-02-18T00:00:00.000000"},{"description":"ajout des r\u00e9f\u00e9rences aux bulletins Debian, Fedora, Mandriva, RedHat et Ubuntu.","revision_date":"2010-02-24T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s dans Mozilla\nFirefox permettent, entre autres, l'ex\u00e9cution de code arbitraire\n\u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9s dans Mozilla Firefox","vendor_advisories":[{"published_at":null,"title":"Bulletins de s\u00e9curit\u00e9 de la fondation Mozilla du 17 f\u00e9vrier 2010","url":null}]}