Описание
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-3660
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14226
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71908
- https://bugzilla.mozilla.org/show_bug.cgi?id=706249
- https://bugzilla.mozilla.org/show_bug.cgi?id=701637
- https://bugzilla.mozilla.org/show_bug.cgi?id=701248
- https://bugzilla.mozilla.org/show_bug.cgi?id=700512
- https://bugzilla.mozilla.org/show_bug.cgi?id=697255
- https://bugzilla.mozilla.org/show_bug.cgi?id=696579
- https://bugzilla.mozilla.org/show_bug.cgi?id=694200
- https://bugzilla.mozilla.org/show_bug.cgi?id=693144
- https://bugzilla.mozilla.org/show_bug.cgi?id=693143
- https://bugzilla.mozilla.org/show_bug.cgi?id=691873
- https://bugzilla.mozilla.org/show_bug.cgi?id=691746
- https://bugzilla.mozilla.org/show_bug.cgi?id=690376
- https://bugzilla.mozilla.org/show_bug.cgi?id=689892
- https://bugzilla.mozilla.org/show_bug.cgi?id=688974
- https://bugzilla.mozilla.org/show_bug.cgi?id=688364
- https://bugzilla.mozilla.org/show_bug.cgi?id=686107
- https://bugzilla.mozilla.org/show_bug.cgi?id=685321
- https://bugzilla.mozilla.org/show_bug.cgi?id=685186
- https://bugzilla.mozilla.org/show_bug.cgi?id=682252
- https://bugzilla.mozilla.org/show_bug.cgi?id=680687
- https://bugzilla.mozilla.org/show_bug.cgi?id=679986
- https://bugzilla.mozilla.org/show_bug.cgi?id=679494
- https://bugzilla.mozilla.org/show_bug.cgi?id=562442
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html
- http://osvdb.org/77952
- http://secunia.com/advisories/47302
- http://secunia.com/advisories/47334
- http://secunia.com/advisories/49055
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:192
- http://www.mozilla.org/security/announce/2011/mfsa2011-53.html
- http://www.securitytracker.com/id?1026445
- http://www.securitytracker.com/id?1026446
- http://www.securitytracker.com/id?1026447
EPSS
CVE ID
Связанные уязвимости
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.
Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
EPSS