CVE-2011-0070 — Out-of-bounds Write in Mozilla Seamonkey

15 documents6 sources

Severity

10.0CRITICALNVD

EPSS

4.1%

top 11.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox

Timeline

PublishedMay 7

Latest updateMay 17

Description

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0069.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/seamonkey2.0.13+46

▶NVDmozilla/thunderbird3.1.9+69

▶NVDmozilla/firefox35 versions+34

Patches

Patch: bugzilla.mozilla.org ↗Patch: bugzilla.mozilla.org ↗

🔴Vulnerability Details

GHSA

GHSA-rr5m-rhf5-cxvw: Unspecified vulnerability in the browser engine in Mozilla Firefox 3↗2022-05-17

▶

GHSA

GHSA-2fcq-6m38-v4mx: Unspecified vulnerability in the browser engine in Mozilla Firefox 3↗2022-05-17

▶

CVEList

CVE-2011-0070: Unspecified vulnerability in the browser engine in Mozilla Firefox 3↗2011-05-07

▶

CVEList

CVE-2011-0069: Unspecified vulnerability in the browser engine in Mozilla Firefox 3↗2011-05-07

▶

📋Vendor Advisories

Ubuntu

Thunderbird regression↗2011-06-06

▶

Ubuntu

Thunderbird vulnerabilities↗2011-05-05

▶

Ubuntu

Thunderbird vulnerabilities↗2011-05-05

▶

Ubuntu

Xulrunner vulnerabilities↗2011-04-30

▶

Ubuntu

Firefox vulnerabilities↗2011-04-30

▶

💬Community

Bugzilla

CVE-2011-0070 Mozilla double free flaw (MFSA 2011-12)↗2011-04-28

▶