Lucene search

MitreCVE-2011-2988

HistoryAug 18, 2011 - 6:55 p.m.

CVE-2011-2988

2011-08-1818:55:01

CWE-119

mitre

web.nvd.nist.gov

cve-2011-2988

buffer overflow

webgl

shader

mozilla firefox

thunderbird

seamonkey

nvd

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

9.7

Confidence

High

EPSS

0.157

Percentile

96.0%

JSON

Buffer overflow in an unspecified string class in the WebGL shader implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long source-code block for a shader.

Affected configurations

Nvd

Node

mozillafirefoxMatch4.0

mozillafirefoxMatch4.0beta1

mozillafirefoxMatch4.0beta10

mozillafirefoxMatch4.0beta11

mozillafirefoxMatch4.0beta12

mozillafirefoxMatch4.0beta2

mozillafirefoxMatch4.0beta3

mozillafirefoxMatch4.0beta4

mozillafirefoxMatch4.0beta5

mozillafirefoxMatch4.0beta6

mozillafirefoxMatch4.0beta7

mozillafirefoxMatch4.0beta8

mozillafirefoxMatch4.0beta9

mozillafirefoxMatch4.0.1

mozillafirefoxMatch5.0

mozillaseamonkeyMatch2.0

mozillaseamonkeyMatch2.0alpha_1

mozillaseamonkeyMatch2.0alpha_2

mozillaseamonkeyMatch2.0alpha_3

mozillaseamonkeyMatch2.0beta_1

mozillaseamonkeyMatch2.0beta_2

mozillaseamonkeyMatch2.0rc1

mozillaseamonkeyMatch2.0rc2

mozillaseamonkeyMatch2.0.1

mozillaseamonkeyMatch2.0.2

mozillaseamonkeyMatch2.0.3

mozillaseamonkeyMatch2.0.4

mozillaseamonkeyMatch2.0.5

mozillaseamonkeyMatch2.0.6

mozillaseamonkeyMatch2.0.7

mozillaseamonkeyMatch2.0.8

mozillaseamonkeyMatch2.0.9

mozillaseamonkeyMatch2.0.10

mozillaseamonkeyMatch2.0.11

mozillaseamonkeyMatch2.0.12

mozillaseamonkeyMatch2.0.13

mozillaseamonkeyMatch2.0.14

mozillaseamonkeyMatch2.1

mozillaseamonkeyMatch2.1alpha1

mozillaseamonkeyMatch2.1alpha2

mozillaseamonkeyMatch2.1alpha3

mozillaseamonkeyMatch2.1beta1

mozillaseamonkeyMatch2.1beta2

mozillaseamonkeyMatch2.1beta3

mozillaseamonkeyMatch2.1rc1

mozillaseamonkeyMatch2.1rc2

mozillaseamonkeyMatch2.2

mozillaseamonkeyMatch2.2beta1

mozillaseamonkeyMatch2.2beta2

mozillaseamonkeyMatch2.2beta3

mozillathunderbirdRange≤5.0

VendorProductVersionCPE
mozillaseamonkey2.0cpe:/a:mozilla:seamonkey:2.0:alpha_3::
mozillaseamonkey2.1cpe:/a:mozilla:seamonkey:2.1:beta3::
mozillaseamonkey2.1cpe:/a:mozilla:seamonkey:2.1:rc2::
mozillaseamonkey2.1cpe:/a:mozilla:seamonkey:2.1:rc1::
mozillafirefox4.0cpe:/a:mozilla:firefox:4.0:beta6::
mozillaseamonkey2.0cpe:/a:mozilla:seamonkey:2.0:::
mozillaseamonkey2.2cpe:/a:mozilla:seamonkey:2.2:beta3::
mozillaseamonkey2.0.3cpe:/a:mozilla:seamonkey:2.0.3:::
mozillaseamonkey2.0.6cpe:/a:mozilla:seamonkey:2.0.6:::
mozillaseamonkey2.0.1cpe:/a:mozilla:seamonkey:2.0.1:::

Vendor	Product	Version	CPE
mozilla	seamonkey	2.0	cpe:/a:mozilla:seamonkey:2.0:alpha_3::
mozilla	seamonkey	2.1	cpe:/a:mozilla:seamonkey:2.1:beta3::
mozilla	seamonkey	2.1	cpe:/a:mozilla:seamonkey:2.1:rc2::
mozilla	seamonkey	2.1	cpe:/a:mozilla:seamonkey:2.1:rc1::
mozilla	firefox	4.0	cpe:/a:mozilla:firefox:4.0:beta6::
mozilla	seamonkey	2.0	cpe:/a:mozilla:seamonkey:2.0:::
mozilla	seamonkey	2.2	cpe:/a:mozilla:seamonkey:2.2:beta3::
mozilla	seamonkey	2.0.3	cpe:/a:mozilla:seamonkey:2.0.3:::
mozilla	seamonkey	2.0.6	cpe:/a:mozilla:seamonkey:2.0.6:::
mozilla	seamonkey	2.0.1	cpe:/a:mozilla:seamonkey:2.0.1:::