CVE-2011-0062

EUVD-2011-0088
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.6.x before 3.6.14 and Thunderbird 3.1.x before 3.1.8 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
mozillafirefox
3.6
mozillafirefox
3.6.2
mozillafirefox
3.6.3
mozillafirefox
3.6.4
mozillafirefox
3.6.6
mozillafirefox
3.6.7
mozillafirefox
3.6.8
mozillafirefox
3.6.9
mozillafirefox
3.6.10
mozillafirefox
3.6.11
mozillafirefox
3.6.12
mozillafirefox
3.6.13
mozillathunderbird
3.1
mozillathunderbird
3.1.1
mozillathunderbird
3.1.2
mozillathunderbird
3.1.3
mozillathunderbird
3.1.4
mozillathunderbird
3.1.5
mozillathunderbird
3.1.6
mozillathunderbird
3.1.7
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
dapper
ignored
hardy
ignored
karmic
dne
lucid
Fixed 3.6.14+build3+nobinonly-0ubuntu0.10.04.1
released
maverick
Fixed 3.6.14+build3+nobinonly-0ubuntu0.10.10.1
released
natty
not-affected
oneiric
not-affected
precise
not-affected
quantal
not-affected
raring
not-affected
saucy
not-affected
firefox-3.0
dapper
dne
hardy
Fixed 3.6.14+build3+nobinonly-0ubuntu0.8.04.1
released
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
precise
dne
quantal
dne
raring
dne
saucy
dne
firefox-3.5
dapper
dne
hardy
dne
karmic
Fixed 3.6.14+build3+nobinonly-0ubuntu0.9.10.1
released
lucid
dne
maverick
dne
natty
dne
oneiric
dne
precise
dne
quantal
dne
raring
dne
saucy
dne
seamonkey
dapper
dne
hardy
ignored
karmic
ignored
lucid
ignored
maverick
ignored
natty
not-affected
oneiric
not-affected
precise
dne
quantal
dne
raring
dne
saucy
dne
thunderbird
dapper
dne
hardy
not-affected
karmic
not-affected
lucid
Fixed 3.1.8+build3+nobinonly-0ubuntu0.10.04.1
released
maverick
Fixed 3.1.8+build3+nobinonly-0ubuntu0.10.10.1
released
natty
not-affected
oneiric
not-affected
precise
not-affected
quantal
not-affected
raring
not-affected
saucy
not-affected
xulrunner-1.9.2
dapper
dne
hardy
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.8.04.1
released
karmic
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.9.10.1
released
lucid
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.10.04.1
released
maverick
Fixed 1.9.2.14+build3+nobinonly-0ubuntu0.10.10.1
released
natty
not-affected
oneiric
dne
precise
dne
quantal
dne
raring
dne
saucy
dne
References
http://downloads.avaya.com/css/P8/documents/100133195
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mandriva.com/security/advisories?name=MDVSA-2011:042
http://www.mozilla.org/security/announce/2011/mfsa2011-01.html
http://www.securityfocus.com/bid/46647
https://bugzilla.mozilla.org/show_bug.cgi?id=569384
https://bugzilla.mozilla.org/show_bug.cgi?id=599610
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14409
http://downloads.avaya.com/css/P8/documents/100133195
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mandriva.com/security/advisories?name=MDVSA-2011:042
http://www.mozilla.org/security/announce/2011/mfsa2011-01.html
http://www.securityfocus.com/bid/46647
https://bugzilla.mozilla.org/show_bug.cgi?id=569384
https://bugzilla.mozilla.org/show_bug.cgi?id=599610
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14409