Immunity, Inc.

Name	firefox_35
CVE	CVE-2009-2477
Exploit Pack	CANVAS
Description	Firefox 3.5 Remote Code Execution
Notes	CVE Name: CVE-2009-2477 VENDOR: Mozilla Notes: Although the advisories states that this due to improper handling of and tags, this exploit uses another method to reach the vulnerability. For now - if the target browser is closed then the socket is lost - so you might want to install a MOSDEF service as soon as you can. This version is not yet DEP safe. Repeatability: One shot CVE Url: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2477 CVSS: 9.3

Learn more about the CANVAS Exploit Pack here: CANVAS