Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2011-3649
HistoryNov 09, 2011 - 11:00 a.m.

CVE-2011-3649

2011-11-0911:00:00
mitre
www.cve.org
4

AI Score

9.4

Confidence

High

EPSS

0.005

Percentile

77.4%

JSON

Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE: this issue exists because of a CVE-2011-2986 regression.

Related

cve 2
ubuntucve 2
nvd 2
mozilla 4
prion 2
cvelist 1
openvas 23
securityvulns 3
nessus 27
suse 7
freebsd 2
seebug 1
gentoo 1
cve
cve
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
ubuntucve
ubuntucve
CVE-2011-3649
2011-11-09 00:00:00
CVE-2011-2986
2011-08-18 00:00:00
nvd
nvd
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
mozilla
mozilla
Cross-origin data theft using canvas and Windows D2D โ€” Mozilla
2011-11-08 00:00:00
Security issues addressed in Thunderbird 6 โ€” Mozilla
2011-08-16 00:00:00
Security issues addressed in SeaMonkey 2.3 โ€” Mozilla
2011-08-16 00:00:00
prion
prion
Design/Logic Flaw
2011-11-09 11:55:00
Design/Logic Flaw
2011-08-18 18:55:00
cvelist
cvelist
CVE-2011-2986
2011-08-18 18:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2011-50) - Linux
2021-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities - Windows
2011-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities (Windows)
2011-11-11 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2011-50
2011-11-25 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-11-25 00:00:00
Mozilla Fireox / Seamonkey / Thunderbird multiple security vulnerabilities
2011-08-19 00:00:00
nessus
nessus
Mozilla Firefox < 8.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Mozilla Thunderbird 7.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Firefox < 8.0 Multiple Vulnerabilities
2011-11-09 00:00:00
suse
suse
seamonkey: Update to Mozilla Seamonkey 2.3 (important)
2011-08-26 20:08:16
MozillaFirefox: Update to Firefox 6 (important)
2011-08-29 21:08:18
Security update for Mozilla Firefox (critical)
2011-11-17 23:08:23
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-11-08 00:00:00
mozilla -- multiple vulnerabilities
2011-08-16 00:00:00
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkeyๅคšไธชๅฎ‰ๅ…จๆผๆดž
2011-08-18 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

AI Score

9.4

Confidence

High

EPSS

0.005

Percentile

77.4%

JSON
Related for CVELIST:CVE-2011-3649
cve2ubuntucve2nvd2mozilla4prion2cvelist1openvas23securityvulns3nessus27suse7freebsd2seebug1gentoo1