CVE-2011-0062

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x before 3.6.14 and Thunderbird 3.1.x before 3.1.8 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
mozillafirefox
3.6
mozillafirefox
3.6.2
mozillafirefox
3.6.3
mozillafirefox
3.6.4
mozillafirefox
3.6.6
mozillafirefox
3.6.7
mozillafirefox
3.6.8
mozillafirefox
3.6.9
mozillafirefox
3.6.10
mozillafirefox
3.6.11
mozillafirefox
3.6.12
mozillafirefox
3.6.13
mozillathunderbird
3.1
mozillathunderbird
3.1.1
mozillathunderbird
3.1.2
mozillathunderbird
3.1.3
mozillathunderbird
3.1.4
mozillathunderbird
3.1.5
mozillathunderbird
3.1.6
mozillathunderbird
3.1.7
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
not-affected
maverick
Fixed 3.6.14+build3+nobinonly-0ubuntu0.10.10.1
released
lucid
Fixed 3.6.14+build3+nobinonly-0ubuntu0.10.04.1
released
karmic
dne
hardy
ignored
dapper
ignored
firefox-3.0
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
maverick
dne
lucid
dne
karmic
dne
hardy
Fixed 3.6.14+build3+nobinonly-0ubuntu0.8.04.1
released
dapper
dne
firefox-3.5
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
maverick
dne
lucid
dne
karmic
Fixed 3.6.14+build3+nobinonly-0ubuntu0.9.10.1
released
hardy
dne
dapper
dne
seamonkey
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
not-affected
natty
not-affected
maverick
ignored
lucid
ignored
karmic
ignored
hardy
ignored
dapper
dne
thunderbird
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
not-affected
maverick
Fixed 3.1.8+build3+nobinonly-0ubuntu0.10.10.1
released
lucid
Fixed 3.1.8+build3+nobinonly-0ubuntu0.10.04.1
released
karmic
not-affected
hardy
not-affected
dapper
dne
xulrunner-1.9.2
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
not-affected
maverick
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.10.10.1
released
lucid
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.10.04.1
released
karmic
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.9.10.1
released
hardy
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.8.04.1
released
dapper
dne
References
http://downloads.avaya.com/css/P8/documents/100133195
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mandriva.com/security/advisories?name=MDVSA-2011:042
http://www.mozilla.org/security/announce/2011/mfsa2011-01.html
http://www.securityfocus.com/bid/46647
https://bugzilla.mozilla.org/show_bug.cgi?id=569384
https://bugzilla.mozilla.org/show_bug.cgi?id=599610
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14409
http://downloads.avaya.com/css/P8/documents/100133195
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mandriva.com/security/advisories?name=MDVSA-2011:042
http://www.mozilla.org/security/announce/2011/mfsa2011-01.html
http://www.securityfocus.com/bid/46647
https://bugzilla.mozilla.org/show_bug.cgi?id=569384
https://bugzilla.mozilla.org/show_bug.cgi?id=599610
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14409