CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
96.8%
Multiple unspecified vulnerabilities in the browser engine in Mozilla
Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before
2.6 allow remote attackers to cause a denial of service (memory corruption
and application crash) or possibly execute arbitrary code via vectors that
trigger a compartment mismatch associated with the
nsDOMMessageEvent::GetData function, and unknown other vectors.