Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2011-3666
HistoryDec 21, 2011 - 2:00 a.m.

CVE-2011-3666

2011-12-2102:00:00
mitre
raw.githubusercontent.com
1

6.3 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.2%

JSON

Mozilla Firefox before 3.6.25 and Thunderbird before 3.1.17 on Mac OS X do not consider .jar files to be executable files, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted file. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-2372 on Mac OS X.

Related

prion 2
ubuntucve 2
nessus 51
openvas 43
mozilla 2
cve 2
cvelist 1
veracode 1
securityvulns 3
oraclelinux 2
centos 1
redhat 2
debian 1
ibm 2
suse 2
ubuntu 1
freebsd 1
gentoo 1
prion
prion
Design/Logic Flaw
2011-12-21 04:02:00
Design/Logic Flaw
2011-09-29 00:55:00
ubuntucve
ubuntucve
CVE-2011-3666
2011-12-21 00:00:00
CVE-2011-2372
2011-09-28 00:00:00
nessus
nessus
Firefox 3.6 < 3.6.25 Jar File Enter Key Dialog Bypass (Mac OS X)
2011-12-21 00:00:00
Thunderbird 3.1 < 3.1.17 Jar File Enter Key Dialog Bypass (Mac OS X)
2011-12-21 00:00:00
Mozilla Firefox 3.6 < 3.6.23 Multiple Vulnerabilities
2011-09-29 00:00:00
openvas
openvas
Mozilla Products jar Files Remote Code Execution Vulnerability (MAC OS X)
2011-12-22 00:00:00
Mozilla Products jar Files Remote Code Execution Vulnerability - Mac OS X
2011-12-22 00:00:00
Mozilla Firefox Security Advisory (MFSA2011-40) - Linux
2021-11-16 00:00:00
mozilla
mozilla
.jar not treated as executable in Firefox 3.6 on Mac — Mozilla
2011-12-20 00:00:00
Code installation through holding down Enter — Mozilla
2011-09-27 00:00:00
cve
cve
CVE-2011-3666
2011-12-21 04:02:01
CVE-2011-2372
2011-09-29 00:55:01
cvelist
cvelist
CVE-2011-2372
2011-09-29 00:00:00
veracode
veracode
Access Control Bypass
2020-04-10 01:02:40
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2011-40
2011-10-01 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-01-02 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-10-01 00:00:00
oraclelinux
oraclelinux
firefox security update
2011-09-28 00:00:00
thunderbird security update
2011-09-28 00:00:00
centos
centos
firefox, xulrunner security update
2011-09-29 03:54:30
redhat
redhat
(RHSA-2011:1341) Critical: firefox security update
2011-09-28 00:00:00
(RHSA-2011:1342) Critical: thunderbird security update
2011-09-28 00:00:00
debian
debian
[BSA-048] Security Update for Iceweasel
2011-10-03 09:41:06
ibm
ibm
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: Storwize V7000 Unified Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
suse
suse
MozillaThunderbird: Update to Mozilla Thunderbird 3.1.14 (important)
2011-10-04 15:08:20
Security update for mozilla-nss (critical)
2011-11-18 22:08:26
ubuntu
ubuntu
Mozvoikko, ubufox, webfav update
2011-10-04 00:00:00
freebsd
freebsd
Mozilla -- multiple vulnerabilities
2011-09-27 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

6.3 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.2%

JSON
Related for CVELIST:CVE-2011-3666
prion2ubuntucve2nessus51openvas43mozilla2cve2cvelist1veracode1securityvulns3oraclelinux2centos1redhat2debian1ibm2suse2ubuntu1freebsd1gentoo1