Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-3658
HistoryDec 20, 2011 - 12:00 a.m.

CVE-2011-3658

2011-12-2000:00:00
ubuntu.com
ubuntu.com
8

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.955 High

EPSS

Percentile

99.4%

The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and
SeaMonkey 2.5 does not properly interact with DOMAttrModified event
handlers, which allows remote attackers to cause a denial of service
(out-of-bounds memory access) or possibly have unspecified other impact via
vectors involving removal of SVG elements.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu11.04noarchfirefox<Β 9.0.1+build1-0ubuntu0.11.04.1UNKNOWN
ubuntu11.10noarchfirefox<Β 9.0.1+build1-0ubuntu0.11.10.2UNKNOWN
ubuntuupstreamnoarchfirefox<Β anyUNKNOWN
ubuntuupstreamnoarchseamonkey<Β anyUNKNOWN
ubuntu10.04noarchthunderbird<Β 3.1.20+build1+nobinonly-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchthunderbird<Β 3.1.20+build1+nobinonly-0ubuntu0.10.10.1UNKNOWN
ubuntu11.04noarchthunderbird<Β 3.1.20+build1+nobinonly-0ubuntu0.11.04.1UNKNOWN
ubuntu11.10noarchthunderbird<Β 9.0+build2-0ubuntu0.11.10.1UNKNOWN
ubuntuupstreamnoarchthunderbird<Β 9.0UNKNOWN
ubuntu10.04noarchxulrunner-1.9.2<Β 1.9.2.28+build1+nobinonly-0ubuntu0.10.04.1UNKNOWN
Rows per page:
1-10 of 141

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.955 High

EPSS

Percentile

99.4%