9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Thunderbird, Firefox ESR, and Firefox are vulnerable to use-after-free vulnerability. SMIL animation functions may crash when pointers to animation elements in an array are dropped from the animation controller while still in use causing denial of service conditions.
www.securityfocus.com/bid/97940
www.securitytracker.com/id/1038320
access.redhat.com/errata/RHSA-2017:1104
access.redhat.com/errata/RHSA-2017:1106
access.redhat.com/errata/RHSA-2017:1201
access.redhat.com/security/cve/CVE-2016-10195
access.redhat.com/security/cve/CVE-2016-10196
access.redhat.com/security/cve/CVE-2016-10197
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=1347168
bugzilla.redhat.com/show_bug.cgi?id=1443326
www.debian.org/security/2017/dsa-3831
www.mozilla.org/en-US/security/advisories/mfsa2017-08
www.mozilla.org/security/advisories/mfsa2017-10/
www.mozilla.org/security/advisories/mfsa2017-11/
www.mozilla.org/security/advisories/mfsa2017-12/
www.mozilla.org/security/advisories/mfsa2017-13/
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P