CVE-2011-0061 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Seamonkey

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents6 sources

Severity

9.3CRITICALNVD

EPSS

4.1%

top 11.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox

Timeline

PublishedMar 2

Latest updateMay 3

Description

Buffer overflow in Mozilla Firefox 3.6.x before 3.6.14, Thunderbird before 3.1.8, and SeaMonkey before 2.0.12 might allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/seamonkey2.0.11+44

▶NVDmozilla/thunderbird3.1.7+79

▶NVDmozilla/firefox12 versions+11

🔴Vulnerability Details

GHSA

GHSA-7m27-7836-w9w2: Buffer overflow in Mozilla Firefox 3↗2022-05-03

▶

CVEList

CVE-2011-0061: Buffer overflow in Mozilla Firefox 3↗2011-03-02

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner regression↗2011-03-07

▶

Ubuntu

Thunderbird vulnerabilities↗2011-03-03

▶

Ubuntu

Firefox and Xulrunner vulnerabilities↗2011-03-03

▶

Red Hat

Mozilla crash caused by corrupted JPEG image (MFSA 2011-09)↗2011-03-01

▶

💬Community

Bugzilla

CVE-2011-0061 Mozilla crash caused by corrupted JPEG image (MFSA 2011-09)↗2011-02-04

▶