CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
97.9%
The Mozilla Project reports:
MFSA 2011-46 loadSubScript unwraps XPCNativeWrapper scope
parameter (1.9.2 branch)
MFSA 2011-47 Potential XSS against sites using Shift-JIS
MFSA 2011-48 Miscellaneous memory safety hazards (rv:8.0)
MFSA 2011-49 Memory corruption while profiling using Firebug
MFSA 2011-50 Cross-origin data theft using canvas and Windows
D2D
MFSA 2011-51 Cross-origin image theft on Mac with integrated
Intel GPU
MFSA 2011-52 Code execution via NoWaiverWrapper
www.mozilla.org/security/announce/2011/mfsa2011-46.html
www.mozilla.org/security/announce/2011/mfsa2011-47.html
www.mozilla.org/security/announce/2011/mfsa2011-48.html
www.mozilla.org/security/announce/2011/mfsa2011-49.html
www.mozilla.org/security/announce/2011/mfsa2011-50.html
www.mozilla.org/security/announce/2011/mfsa2011-51.html
www.mozilla.org/security/announce/2011/mfsa2011-52.html