AI Score
Confidence
High
EPSS
Percentile
61.1%
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.
lists.opensuse.org/opensuse-security-announce/2011-11/msg00020.html
www.mozilla.org/security/announce/2011/mfsa2011-47.html
www.redhat.com/support/errata/RHSA-2011-1439.html
bugzilla.mozilla.org/show_bug.cgi?id=690225
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14212