9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
firefox is vulnerable to denial of service (DoS) attacks. The vulnerability exists through multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
lists.opensuse.org/opensuse-security-announce/2014-03/msg00016.html
lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html
lists.opensuse.org/opensuse-security-announce/2014-03/msg00022.html
lists.opensuse.org/opensuse-security-announce/2014-04/msg00016.html
rhn.redhat.com/errata/RHSA-2014-0310.html
rhn.redhat.com/errata/RHSA-2014-0316.html
www.debian.org/security/2014/dsa-2881
www.debian.org/security/2014/dsa-2911
www.mozilla.org/security/announce/2014/mfsa2014-15.html
www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
www.securityfocus.com/bid/66412
www.ubuntu.com/usn/USN-2151-1
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=896268
bugzilla.mozilla.org/show_bug.cgi?id=958867
bugzilla.mozilla.org/show_bug.cgi?id=960145
bugzilla.mozilla.org/show_bug.cgi?id=963974
bugzilla.mozilla.org/show_bug.cgi?id=965982
bugzilla.mozilla.org/show_bug.cgi?id=967341
bugzilla.mozilla.org/show_bug.cgi?id=977538
rhn.redhat.com/errata/RHSA-2014-0310.html
security.gentoo.org/glsa/201504-01
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C