Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2996

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-2996
Last Modified 26 Jan 2012 11:01:58
Published 28 Sep 2011 08:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2996

Summary

Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Vulnerable Systems

Application

  • Mozilla Firefox 3.6

  • Mozilla Firefox 3.6.10

  • Mozilla Firefox 3.6.11

  • Mozilla Firefox 3.6.12

  • Mozilla Firefox 3.6.13

  • Mozilla Firefox 3.6.14

  • Mozilla Firefox 3.6.15

  • Mozilla Firefox 3.6.16

  • Mozilla Firefox 3.6.17

  • Mozilla Firefox 3.6.18

  • Mozilla Firefox 3.6.19

  • Mozilla Firefox 3.6.2

  • Mozilla Firefox 3.6.20

  • Mozilla Firefox 3.6.21

  • Mozilla Firefox 3.6.22

  • Mozilla Firefox 3.6.3

  • Mozilla Firefox 3.6.4

  • Mozilla Firefox 3.6.6

  • Mozilla Firefox 3.6.7

  • Mozilla Firefox 3.6.8

  • Mozilla Firefox 3.6.9


References

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=555018

CONFIRM - http://www.mozilla.org/security/announce/2011/mfsa2011-36.html

MANDRIVA - MDVSA-2011:140

MANDRIVA - MDVSA-2011:139

SUSE - SUSE-SU-2011:1256

Related Patches

Novell SUSE 2011:5224 MozillaFirefox security update for SLE 11 SP1 i586

Novell SUSE 2011:5429 MozillaFirefox security update for SLE 11 SP1 i586

Novell SUSE 2011:5429 MozillaFirefox security update for SLE 11 SP1 x86_64

Novell SUSE 2011:7784 MozillaFirefox security update for SLE 10 SP4 i586

Novell SUSE 2011:7842 mozilla-nss security update for SLE 10 SP4 i586

Novell SUSE 2011:7842 mozilla-nss security update for SLE 10 SP4 x86_64


Last Updated: 27 May 2016 10:57:21