Lucene search

K

PRIOn knowledge basePRION:CVE-2011-0051

HistoryMar 02, 2011 - 8:00 p.m.

Design/Logic Flaw

2011-03-0220:00:00

PRIOn knowledge base

www.prio-n.com

3

6.9 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

86.4%

Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.

CPENameOperatorVersion
firefoxeq3.6.2
firefoxeq3.6.3
firefoxeq3.6.11
firefoxeq3.6.8
firefoxeq3.6.9
firefoxeq3.6.12
firefoxeq3.6.6
firefoxeq3.6.10
firefoxeq3.6.7
firefoxeq3.6.4

Rows per page:

1-10 of 1571

References

downloads.avaya.com/css/P8/documents/100133195

support.avaya.com/css/P8/documents/100128655

www.mandriva.com/security/advisories?name=MDVSA-2011:041

www.mozilla.org/security/announce/2011/mfsa2011-02.html

www.redhat.com/support/errata/RHSA-2011-0312.html

www.redhat.com/support/errata/RHSA-2011-0313.html

bugzilla.mozilla.org/show_bug.cgi?id=616659

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14211

6.9 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

86.4%

Related for PRION:CVE-2011-0051

cve1 veracode1 mozilla1 ubuntucve1 seebug1 securityvulns2 oraclelinux3 openvas32 nessus43 redhat3 centos3 osv3 debian4 ubuntu3 freebsd1 suse1 gentoo1