10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
High
0.102 Low
EPSS
Percentile
95.0%
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, SeaMonkey 1.x and 2.x, and possibly other products allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
lists.opensuse.org/opensuse-security-announce/2011-08/msg00023.html
lists.opensuse.org/opensuse-security-announce/2011-08/msg00027.html
www.debian.org/security/2011/dsa-2295
www.debian.org/security/2011/dsa-2296
www.debian.org/security/2011/dsa-2297
www.mandriva.com/security/advisories?name=MDVSA-2011:127
www.mozilla.org/security/announce/2011/mfsa2011-30.html
www.redhat.com/support/errata/RHSA-2011-1164.html
www.redhat.com/support/errata/RHSA-2011-1165.html
www.redhat.com/support/errata/RHSA-2011-1166.html
www.redhat.com/support/errata/RHSA-2011-1167.html
www.securitytracker.com/id?1025940
bugzilla.mozilla.org/show_bug.cgi?id=541255
bugzilla.mozilla.org/show_bug.cgi?id=615970
bugzilla.mozilla.org/show_bug.cgi?id=632206
bugzilla.mozilla.org/show_bug.cgi?id=643062
bugzilla.mozilla.org/show_bug.cgi?id=674545
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14294