CVE-2011-0075Integer Overflow or Wraparound in Mozilla Seamonkey

CWE-190Integer Overflow or WraparoundCWE-416Use After Free26 documents6 sources
Severity
10.0CRITICALNVD
EPSS
4.1%
top 11.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla SeamonkeyMozilla ThunderbirdMozilla Firefox
Timeline
PublishedMay 7
Latest updateMay 17

Description

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0072, CVE-2011-0074, CVE-2011-0077, and CVE-2011-0078.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

NVDmozilla/seamonkey2.0.13+46
NVDmozilla/thunderbird3.1.9+69
NVDmozilla/firefox34 versions+33

🔴Vulnerability Details

10
GHSA
GHSA-8r4w-5q86-x94x: Unspecified vulnerability in the browser engine in Mozilla Firefox 32022-05-17
GHSA
GHSA-87rh-32pw-rjhp: Unspecified vulnerability in the browser engine in Mozilla Firefox 32022-05-17
GHSA
GHSA-mgrr-r765-32qh: Unspecified vulnerability in the browser engine in Mozilla Firefox 32022-05-17
GHSA
GHSA-mhg3-gghc-44m4: Unspecified vulnerability in the browser engine in Mozilla Firefox 32022-05-17
GHSA
GHSA-rrhh-jw72-ccc9: Unspecified vulnerability in the browser engine in Mozilla Firefox 32022-05-17

📋Vendor Advisories

10
Ubuntu
Thunderbird regression2011-06-06
Ubuntu
Thunderbird vulnerabilities2011-05-05
Ubuntu
Thunderbird vulnerabilities2011-05-05
Ubuntu
Xulrunner vulnerabilities2011-04-30
Ubuntu
Firefox and Xulrunner vulnerabilities2011-04-29

💬Community

1
Bugzilla
CVE-2011-0075 Mozilla crash from bad iframe source (MFSA 2011-12)2011-04-28
CVE-2011-0075 — Integer Overflow or Wraparound | cvebase