CVE-2011-2375 — Out-of-bounds Write in Mozilla Firefox

10 documents5 sources

Severity

10.0CRITICALNVD

EPSS

2.9%

top 13.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Thunderbird

Timeline

PublishedJun 30

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunderbird through 3.1.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDmozilla/firefox4.0.1+106

▶NVDmozilla/thunderbird3.1.11+83

🔴Vulnerability Details

GHSA

GHSA-4v3g-f433-532p: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5↗2022-05-17

▶

📋Vendor Advisories

Red Hat

kernel: incomplete fix for CVE-2011-4131↗2012-03-22

▶

Ubuntu

Firefox regression↗2011-06-23

▶

Ubuntu

mozvoikko, ubufox, webfav update↗2011-06-22

▶

Ubuntu

Firefox vulnerabilities↗2011-06-22

▶

Red Hat

Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)↗2011-06-21

▶

💬Community

Bugzilla

CVE-2012-2375 kernel: incomplete fix for CVE-2011-4131↗2012-05-18

▶

Bugzilla

CVE-2011-2364 CVE-2011-2365 CVE-2011-2374 CVE-2011-2375 CVE-2011-2376 CVE-2011-2605 Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)↗2011-06-20

▶