Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2011-3649
HistoryNov 09, 2011 - 11:55 a.m.

Design/Logic Flaw

2011-11-0911:55:00
PRIOn knowledge base
www.prio-n.com
2

6.5 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE: this issue exists because of a CVE-2011-2986 regression.

CPENameOperatorVersion
firefoxeq7.0
thunderbirdeq7.0

Related

cvelist 2
cve 2
ubuntucve 2
nvd 2
mozilla 4
prion 1
securityvulns 3
openvas 23
nessus 27
freebsd 2
suse 7
seebug 1
gentoo 1
cvelist
cvelist
CVE-2011-3649
2011-11-09 11:00:00
CVE-2011-2986
2011-08-18 18:00:00
cve
cve
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
ubuntucve
ubuntucve
CVE-2011-3649
2011-11-09 00:00:00
CVE-2011-2986
2011-08-18 00:00:00
nvd
nvd
CVE-2011-3649
2011-11-09 11:55:03
CVE-2011-2986
2011-08-18 18:55:01
mozilla
mozilla
Cross-origin data theft using canvas and Windows D2D โ€” Mozilla
2011-11-08 00:00:00
Security issues addressed in Thunderbird 6 โ€” Mozilla
2011-08-16 00:00:00
Security issues addressed in SeaMonkey 2.3 โ€” Mozilla
2011-08-16 00:00:00
prion
prion
Design/Logic Flaw
2011-08-18 18:55:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2011-50
2011-11-25 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-11-25 00:00:00
Mozilla Fireox / Seamonkey / Thunderbird multiple security vulnerabilities
2011-08-19 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2011-50) - Linux
2021-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities - Windows
2011-11-11 00:00:00
Mozilla Products Multiple Vulnerabilities (Windows)
2011-11-11 00:00:00
nessus
nessus
Mozilla Thunderbird 7.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Mozilla Firefox < 8.0 Multiple Vulnerabilities
2013-05-06 00:00:00
Mozilla Thunderbird < 8.0 Multiple Vulnerabilities
2011-11-09 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-11-08 00:00:00
mozilla -- multiple vulnerabilities
2011-08-16 00:00:00
suse
suse
seamonkey: Update to Mozilla Seamonkey 2.3 (important)
2011-08-26 20:08:16
MozillaFirefox: Update to Firefox 6 (important)
2011-08-29 21:08:18
Security update for Mozilla Firefox (critical)
2011-11-17 23:08:23
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkeyๅคšไธชๅฎ‰ๅ…จๆผๆดž
2011-08-18 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

6.5 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON
Related for PRION:CVE-2011-3649
cvelist2cve2ubuntucve2nvd2mozilla4prion1securityvulns3openvas23nessus27freebsd2suse7seebug1gentoo1