Lucene search

[email protected]CVE-2011-3003

HistorySep 29, 2011 - 12:55 a.m.

CVE-2011-3003

2011-09-2900:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-3003

mozilla firefox

seamonkey

denial of service

arbitrary code

webgl

nvd

9.6 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.022 Low

EPSS

Percentile

89.5%

JSON

Mozilla Firefox before 7.0 and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unspecified WebGL test case that triggers a memory-allocation error and a resulting out-of-bounds write operation.

CPENameOperatorVersion
mozilla:firefoxmozilla firefoxlt7.0
mozilla:seamonkeymozilla seamonkeylt2.4

CPE	Name	Operator	Version
mozilla:firefox	mozilla firefox	lt	7.0
mozilla:seamonkey	mozilla seamonkey	lt	2.4

References

www.mandriva.com/security/advisories?name=MDVSA-2011:141

www.mozilla.org/security/announce/2011/mfsa2011-41.html

bugzilla.mozilla.org/show_bug.cgi?id=682335

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14054

9.6 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.022 Low

EPSS

Percentile

89.5%

JSON

Related for CVE-2011-3003

prion1 ubuntucve1 openvas12 securityvulns2 mozilla1 nessus16 ubuntu2 suse1 freebsd1 gentoo1