Lucene search

K

MitreCVELIST:CVE-2011-2983

HistoryAug 18, 2011 - 6:00 p.m.

CVE-2011-2983

2011-08-1818:00:00

mitre

www.cve.org

1

9.2 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.9%

Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, SeaMonkey 1.x and 2.x, and possibly other products does not properly handle the RegExp.input property, which allows remote attackers to bypass the Same Origin Policy and read data from a different domain via a crafted web site, possibly related to a use-after-free.

References

lists.opensuse.org/opensuse-security-announce/2011-08/msg00023.html

lists.opensuse.org/opensuse-security-announce/2011-08/msg00027.html

www.debian.org/security/2011/dsa-2295

www.debian.org/security/2011/dsa-2296

www.debian.org/security/2011/dsa-2297

www.mandriva.com/security/advisories?name=MDVSA-2011:127

www.mozilla.org/security/announce/2011/mfsa2011-30.html

www.redhat.com/support/errata/RHSA-2011-1164.html

www.redhat.com/support/errata/RHSA-2011-1165.html

www.redhat.com/support/errata/RHSA-2011-1167.html

www.securitytracker.com/id?1025940

bugzilla.mozilla.org/show_bug.cgi?id=626297

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14272

9.2 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.9%

Related for CVELIST:CVE-2011-2983

ubuntucve1 veracode1 prion1 nvd1 cve1 openvas50 redhat3 nessus33 oraclelinux3 centos3 ubuntu2 osv3 debian4 suse4 mozilla2 securityvulns1 seebug1 freebsd1 gentoo1