Lucene search

K
cve[email protected]CVE-2011-3232
HistorySep 29, 2011 - 12:55 a.m.

CVE-2011-3232

2011-09-2900:55:00
CWE-94
web.nvd.nist.gov
27
cve-2011-3232
yarr
mozilla firefox
thunderbird
seamonkey
denial of service
application crash
arbitrary code
crafted javascript

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.047 Low

EPSS

Percentile

92.5%

YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, and SeaMonkey before 2.4, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted JavaScript.

References

9.6 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.047 Low

EPSS

Percentile

92.5%

Related for CVE-2011-3232