CVE-2010-3173

Severity

Theme

CVE-2010-3173

high

New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The SSL implementation in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 does not properly set the minimum key length for Diffie-Hellman Ephemeral (DHE) mode, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

ID	Name	Product	Family	Severity
89681	VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0013) (remote check)	Nessus	Misc.	critical
68121	Oracle Linux 4 / 5 : firefox (ELSA-2010-0782)	Nessus	Oracle Linux Local Security Checks	high
68120	Oracle Linux 3 / 4 : seamonkey (ELSA-2010-0781)	Nessus	Oracle Linux Local Security Checks	high
63402	GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)	Nessus	Gentoo Local Security Checks	critical
60872	Scientific Linux Security Update : seamonkey on SL4.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60870	Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
56665	VMSA-2011-0013 : VMware third-party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX	Nessus	VMware ESX Local Security Checks	critical
50793	CentOS 4 / 5 : firefox (CESA-2010:0782)	Nessus	CentOS Local Security Checks	high
50792	CentOS 3 / 4 : seamonkey (CESA-2010:0781)	Nessus	CentOS Local Security Checks	high
50452	Debian DSA-2123-1 : nss - several vulnerabilities	Nessus	Debian Local Security Checks	high
50315	Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2010:211)	Nessus	Mandriva Local Security Checks	high
50314	Mandriva Linux Security Advisory : firefox (MDVSA-2010:210)	Nessus	Mandriva Local Security Checks	high
50088	SeaMonkey < 2.0.9 Multiple Vulnerabilities	Nessus	Windows	high
50087	Mozilla Thunderbird 3.1 < 3.1.5 Multiple Vulnerabilities	Nessus	Windows	high
50086	Mozilla Thunderbird < 3.0.9 Multiple Vulnerabilities	Nessus	Windows	high
50085	Firefox 3.6 < 3.6.11 Multiple Vulnerabilities	Nessus	Windows	high
50084	Firefox < 3.5.14 Multiple Vulnerabilities	Nessus	Windows	high
50081	Ubuntu 8.04 LTS / 9.04 / 9.10 / 10.04 LTS / 10.10 : nss vulnerabilities (USN-1007-1)	Nessus	Ubuntu Local Security Checks	high
50074	FreeBSD : mozilla -- multiple vulnerabilities (c4f067b9-dc4a-11df-8e32-000f20797ede)	Nessus	FreeBSD Local Security Checks	high
801368	Mozilla Firefox 3.5.x < 3.5.14 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
801332	Mozilla Thunderbird 3.0.x < 3.0.9 Multiple Vulnerabilities	Log Correlation Engine	SMTP Clients	high
801331	Mozilla Thunderbird 3.1.x < 3.1.5 Multiple Vulnerabilities	Log Correlation Engine	SMTP Clients	high
801306	Mozilla Firefox 3.6.x < 3.6.11 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
801286	Mozilla SeaMonkey 2.0.x < 2.0.9 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
5685	SeaMonkey 2.0.x < 2.0.9 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	medium
5684	Mozilla Thunderbird 3.1.x < 3.1.5 Multiple Vulnerabilities	Nessus Network Monitor	SMTP Clients	medium
5683	Mozilla Thunderbird 3.0.x < 3.0.9 Multiple Vulnerabilities	Nessus Network Monitor	SMTP Clients	medium
5682	Mozilla Firefox 3.6.x < 3.6.11 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	medium
5681	Mozilla Firefox 3.5.x < 3.5.14 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	medium
50040	RHEL 4 / 5 : firefox (RHSA-2010:0782)	Nessus	Red Hat Local Security Checks	high
50039	RHEL 3 / 4 : seamonkey (RHSA-2010:0781)	Nessus	Red Hat Local Security Checks	high

CVE-2010-3173

high

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Configuration 5

Tenable Plugins

critical

high

high

critical

high

high

critical

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

medium

medium

medium

medium

medium

high

high