Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2011-2371

Опубликовано: 30 июн. 2011
Источник: debian
EPSS Высокий

Описание

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript Array object.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xulrunnerremovedpackage
iceweaselfixed3.5.19-3package
xulrunnerfixed1.9.0.19-12lennypackage
iceweaselnot-affectedlennypackage
iceapefixed2.0.14-3package
iceapenot-affectedlennypackage
icedovefixed3.1.11-1package
icedoveend-of-lifelennypackage

Примечания

  • xulrunner in wheezy is not covered by security support

EPSS

Процентиль: 99%
0.87002
Высокий

Связанные уязвимости

ubuntu логотип

CVE-2011-2371

ubuntu
около 14 лет назад

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript Array object.

redhat логотип

CVE-2011-2371

redhat
около 14 лет назад

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript Array object.

nvd логотип

CVE-2011-2371

nvd
около 14 лет назад

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript Array object.

github логотип

GHSA-2ph2-r6cr-hgrj

github
около 3 лет назад

Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 allows remote attackers to execute arbitrary code via vectors involving a long JavaScript Array object.

fstec логотип

BDU:2020-04519

CVSS3: 9.8
fstec
около 15 лет назад

Уязвимость метода reduceRight почтового клиента Thunderbird, браузера Firefox, пакета программ SeaMonkey, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

EPSS

Процентиль: 99%
0.87002
Высокий