CVE-2011-3003

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Mozilla Firefox before 7.0 and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unspecified WebGL test case that triggers a memory-allocation error and a resulting out-of-bounds write operation.

References

http://www.mandriva.com/security/advisories?name=MDVSA-2011:141

http://www.mozilla.org/security/announce/2011/mfsa2011-41.html

https://bugzilla.mozilla.org/show_bug.cgi?id=682335

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14054

Details

Source: MITRE

Published: 2011-09-29

Updated: 2018-11-29

Type: CWE-119

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (16 total)

IDNameProductFamilySeverity
80608Oracle Solaris Third-Party Patch Update : firefox (multiple_vulnerabilities_in_mozilla_firefox1)NessusSolaris Local Security Checks
critical
76022openSUSE Security Update : seamonkey (seamonkey-5210)NessusSuSE Local Security Checks
critical
75947openSUSE Security Update : MozillaFirefox (MozillaFirefox-5208)NessusSuSE Local Security Checks
critical
75741openSUSE Security Update : seamonkey (openSUSE-SU-2011:1077-1)NessusSuSE Local Security Checks
critical
63402GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)NessusGentoo Local Security Checks
critical
61929Mandriva Linux Security Advisory : firefox (MDVSA-2011:141)NessusMandriva Local Security Checks
critical
56387Ubuntu 11.04 : mozvoikko, ubufox, webfav update (USN-1222-2)NessusUbuntu Local Security Checks
critical
56377Firefox < 7.0 Multiple Vulnerabilities (Mac OS X)NessusMacOS X Local Security Checks
high
56347Ubuntu 11.04 : Firefox vulnerabilities (USN-1222-1)NessusUbuntu Local Security Checks
critical
801285Mozilla Firefox 6.0 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
801225Mozilla SeaMonkey 2.x < 2.4.0 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
6030SeaMonkey 2.x < 2.4.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
6028Mozilla Firefox < 7.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
56337SeaMonkey < 2.4.0 Multiple VulnerabilitiesNessusWindows
high
56335Firefox < 7.0 Multiple VulnerabilitiesNessusWindows
high
56323FreeBSD : Mozilla -- multiple vulnerabilities (1fade8a3-e9e8-11e0-9580-4061862b8c22)NessusFreeBSD Local Security Checks
critical