CVE-2009-1169

CVE-2009-1169 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The txMozillaXSLTProcessor::TransformToDoc function in Mozilla Firefox before 3.0.8 and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XML file with a crafted XSLT transform.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.