CVE-2011-0081 — Out-of-bounds Write in Mozilla Firefox

9 documents5 sources

Severity

10.0CRITICALNVD

EPSS

4.7%

top 10.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Thunderbird

Timeline

PublishedMay 7

Latest updateMay 17

Description

Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.17 and 4.x before 4.0.1, and Thunderbird 3.1.x before 3.1.10, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDmozilla/firefox16 versions+15

▶NVDmozilla/thunderbird9 versions+8

Patches

Patch: bugzilla.mozilla.org ↗Patch: bugzilla.mozilla.org ↗

🔴Vulnerability Details

GHSA

GHSA-58qv-528f-8f4w: Unspecified vulnerability in the browser engine in Mozilla Firefox 3↗2022-05-17

▶

📋Vendor Advisories

Ubuntu

Thunderbird regression↗2011-06-06

▶

Ubuntu

Thunderbird vulnerabilities↗2011-05-05

▶

Ubuntu

Thunderbird vulnerabilities↗2011-05-05

▶

Ubuntu

Firefox vulnerabilities↗2011-04-30

▶

Ubuntu

Firefox and Xulrunner vulnerabilities↗2011-04-29

▶

💬Community

Bugzilla

CVE-2011-0081 Mozilla memory safety issue (MFSA 2011-12)↗2011-04-28

▶