CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
96.2%
The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before
2.3, Thunderbird before 6, and possibly other products does not properly
implement WebGL, which allows remote attackers to cause a denial of service
(memory corruption and application crash) or possibly execute arbitrary
code via unspecified vectors.