Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2011-3649
HistoryNov 09, 2011 - 11:00 a.m.

CVE-2011-3649

2011-11-0911:00:00
mitre
www.cve.org

9.4 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON

Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE: this issue exists because of a CVE-2011-2986 regression.

Related

ubuntucve 2
cve 2
prion 2
mozilla 4
nvd 2
cvelist 1
securityvulns 3
openvas 23
nessus 27
suse 7
freebsd 2
seebug 1
gentoo 1
ubuntucve
ubuntucve
CVE-2011-3649
2011-11-09 00:00:00
CVE-2011-2986
2011-08-18 00:00:00
cve
cve
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
prion
prion
Design/Logic Flaw
2011-11-09 11:55:00
Design/Logic Flaw
2011-08-18 18:55:00
mozilla
mozilla
Cross-origin data theft using canvas and Windows D2D โ€” Mozilla
2011-11-08 00:00:00
Security issues addressed in Thunderbird 6 โ€” Mozilla
2011-08-16 00:00:00
Security issues addressed in SeaMonkey 2.3 โ€” Mozilla
2011-08-16 00:00:00
nvd
nvd
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
cvelist
cvelist
CVE-2011-2986
2011-08-18 18:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2011-50
2011-11-25 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-11-25 00:00:00
Mozilla Fireox / Seamonkey / Thunderbird multiple security vulnerabilities
2011-08-19 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2011-50) - Linux
2021-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities - Windows
2011-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities (Windows)
2011-11-11 00:00:00
nessus
nessus
Mozilla Thunderbird 7.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Mozilla Firefox < 8.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Mozilla Thunderbird < 8.0 Multiple Vulnerabilities
2013-05-06 00:00:00
suse
suse
MozillaFirefox: Update to Firefox 6 (important)
2011-08-29 21:08:18
seamonkey: Update to Mozilla Seamonkey 2.3 (important)
2011-08-26 20:08:16
Security update for Mozilla Firefox (critical)
2011-11-17 23:08:23
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-11-08 00:00:00
mozilla -- multiple vulnerabilities
2011-08-16 00:00:00
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkeyๅคšไธชๅฎ‰ๅ…จๆผๆดž
2011-08-18 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

9.4 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON
Related for CVELIST:CVE-2011-3649
ubuntucve2cve2prion2mozilla4nvd2cvelist1securityvulns3openvas23nessus27suse7freebsd2seebug1gentoo1