CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
97.4%
The Mozilla Project reports:
MFSA 2011-01 Miscellaneous memory safety hazards (rv:1.9.2.14/ 1.9.1.17)
MFSA 2011-02 Recursive eval call causes confirm dialogs to evaluate to true
MFSA 2011-03 Use-after-free error in JSON.stringify
MFSA 2011-04 Buffer overflow in JavaScript upvarMap
MFSA 2011-05 Buffer overflow in JavaScript atom map
MFSA 2011-06 Use-after-free error using Web Workers
MFSA 2011-07 Memory corruption during text run construction (Windows)
MFSA 2011-08 ParanoidFragmentSink allows javascript: URLs in chrome documents
MFSA 2011-09 Crash caused by corrupted JPEG image
MFSA 2011-10 CSRF risk with plugins and 307 redirects
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | firefox | < 3.6.14,1 | UNKNOWN |
FreeBSD | any | noarch | libxul | < 1.9.2.14 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox | < 3.6.14,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox-devel | < 3.5.17 | UNKNOWN |
FreeBSD | any | noarch | linux-seamonkey | < 2.0.12 | UNKNOWN |
FreeBSD | any | noarch | linux-thunderbird | = 3.1 | UNKNOWN |
FreeBSD | any | noarch | linux-thunderbird | < 3.1.8 | UNKNOWN |
FreeBSD | any | noarch | seamonkey | < 2.0.12 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | < 3.1.8 | UNKNOWN |
www.mozilla.org/security/announce/2011/mfsa2011-01.html
www.mozilla.org/security/announce/2011/mfsa2011-02.html
www.mozilla.org/security/announce/2011/mfsa2011-03.html
www.mozilla.org/security/announce/2011/mfsa2011-04.html
www.mozilla.org/security/announce/2011/mfsa2011-05.html
www.mozilla.org/security/announce/2011/mfsa2011-06.html
www.mozilla.org/security/announce/2011/mfsa2011-07.html
www.mozilla.org/security/announce/2011/mfsa2011-08.html
www.mozilla.org/security/announce/2011/mfsa2011-09.html
www.mozilla.org/security/announce/2011/mfsa2011-10.html