CVE-2011-3232

HIGH

Description

YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, and SeaMonkey before 2.4, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted JavaScript.

ID	Name	Product	Family	Severity
80784	Oracle Solaris Third-Party Patch Update : thunderbird (multiple_vulnerabilities_in_thunderbird3)	Nessus	Solaris Local Security Checks	critical
80608	Oracle Solaris Third-Party Patch Update : firefox (multiple_vulnerabilities_in_mozilla_firefox1)	Nessus	Solaris Local Security Checks	critical
76022	openSUSE Security Update : seamonkey (seamonkey-5210)	Nessus	SuSE Local Security Checks	critical
75968	openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2011:1076-2)	Nessus	SuSE Local Security Checks	critical
75947	openSUSE Security Update : MozillaFirefox (MozillaFirefox-5208)	Nessus	SuSE Local Security Checks	critical
75741	openSUSE Security Update : seamonkey (openSUSE-SU-2011:1077-1)	Nessus	SuSE Local Security Checks	critical
75668	openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2011:1076-2)	Nessus	SuSE Local Security Checks	critical
74612	openSUSE Security Update : MozillaFirefox / MozillaThunderbird / seamonkey / etc (openSUSE-SU-2012:0567-1)	Nessus	SuSE Local Security Checks	critical
63402	GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)	Nessus	Gentoo Local Security Checks	critical
61930	Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2011:142)	Nessus	Mandriva Local Security Checks	critical
61929	Mandriva Linux Security Advisory : firefox (MDVSA-2011:141)	Nessus	Mandriva Local Security Checks	critical
60026	Apple iOS < 5.0 Multiple Vulnerabilities (BEAST)	Nessus	Mobile Devices	critical
56483	Safari < 5.1.1 Multiple Vulnerabilities	Nessus	Windows	high
56482	Mac OS X : Apple Safari < 5.1.1	Nessus	MacOS X Local Security Checks	high
800997	Safari < 5.1.1 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
56470	Apple iTunes < 10.5 Multiple Vulnerabilities (uncredentialed check)	Nessus	Peer-To-Peer File Sharing	high
56469	Apple iTunes < 10.5 Multiple Vulnerabilities (credentialed check)	Nessus	Windows	high
6041	Apple iOS < 5.0 Multiple Vulnerabilities	Nessus Network Monitor	Mobile Devices	high
6038	Safari < 5.1.1 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
6037	iTunes < 10.5 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
56387	Ubuntu 11.04 : mozvoikko, ubufox, webfav update (USN-1222-2)	Nessus	Ubuntu Local Security Checks	critical
56377	Firefox < 7.0 Multiple Vulnerabilities (Mac OS X)	Nessus	MacOS X Local Security Checks	high
56347	Ubuntu 11.04 : Firefox vulnerabilities (USN-1222-1)	Nessus	Ubuntu Local Security Checks	critical
801344	Mozilla Thunderbird 6 Multiple Vulnerabilities	Log Correlation Engine	SMTP Clients	high
801285	Mozilla Firefox 6.0 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
801225	Mozilla SeaMonkey 2.x < 2.4.0 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high
56337	SeaMonkey < 2.4.0 Multiple Vulnerabilities	Nessus	Windows	high
56336	Mozilla Thunderbird < 7.0 Multiple Vulnerabilities	Nessus	Windows	high
56335	Firefox < 7.0 Multiple Vulnerabilities	Nessus	Windows	high
56323	FreeBSD : Mozilla -- multiple vulnerabilities (1fade8a3-e9e8-11e0-9580-4061862b8c22)	Nessus	FreeBSD Local Security Checks	critical
6030	SeaMonkey 2.x < 2.4.0 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
6029	Mozilla Thunderbird < 7.0 Multiple Vulnerabilities	Nessus Network Monitor	SMTP Clients	high
6028	Mozilla Firefox < 7.0 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high

CVE-2011-3232

Description

References

Details

Risk Information

CVSS v2.0