CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
96.5%
Heap-based buffer overflow in Almost Native Graphics Layer Engine (ANGLE), as used in the WebGL implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products might allow remote attackers to execute arbitrary code via unspecified vectors.
lists.opensuse.org/opensuse-security-announce/2011-08/msg00023.html
secunia.com/advisories/49055
www.mozilla.org/security/announce/2011/mfsa2011-29.html
www.mozilla.org/security/announce/2011/mfsa2011-31.html
www.mozilla.org/security/announce/2011/mfsa2011-33.html
www.securityfocus.com/bid/49226
bugzilla.mozilla.org/show_bug.cgi?id=665934
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14285