Lucene search

K

PRIOn knowledge basePRION:CVE-2011-0055

HistoryMar 02, 2011 - 8:00 p.m.

Design/Logic Flaw

2011-03-0220:00:00

PRIOn knowledge base

www.prio-n.com

4

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.105 Low

EPSS

Percentile

94.9%

Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via unspecified vectors related to the js_HasOwnProperty function and garbage collection.

CPENameOperatorVersion
firefoxeq3.6.2
firefoxeq3.6.3
firefoxeq3.6.11
firefoxeq3.6.8
firefoxeq3.6.9
firefoxeq3.6.12
firefoxeq3.6.6
firefoxeq3.6.10
firefoxeq3.6.7
firefoxeq3.6.4

Rows per page:

1-10 of 1571

References

downloads.avaya.com/css/P8/documents/100133195

www.mandriva.com/security/advisories?name=MDVSA-2011:041

www.mozilla.org/security/announce/2011/mfsa2011-03.html

www.securityfocus.com/archive/1/516802

www.securityfocus.com/bid/46661

www.zerodayinitiative.com/advisories/ZDI-11-103/

bugzilla.mozilla.org/show_bug.cgi?id=616009

bugzilla.mozilla.org/show_bug.cgi?id=619255

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14476

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.105 Low

EPSS

Percentile

94.9%

Related for PRION:CVE-2011-0055

zdi1 securityvulns3 cve1 mozilla1 ubuntucve1 veracode1 openvas24 osv3 debian4 nessus32 ubuntu3 freebsd1 oraclelinux1 centos1 redhat1 suse1 gentoo1