CVE-2011-3660

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-3660
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger a compartment mismatch associated with the nsDOMMessageEvent::GetData function, and unknown other vectors.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html
http://osvdb.org/77952
http://secunia.com/advisories/47302
http://secunia.com/advisories/47334
http://secunia.com/advisories/49055
http://www.mandriva.com/security/advisories?name=MDVSA-2011:192
http://www.mozilla.org/security/announce/2011/mfsa2011-53.html Vendor Advisory
http://www.securitytracker.com/id?1026445
http://www.securitytracker.com/id?1026446
http://www.securitytracker.com/id?1026447
https://bugzilla.mozilla.org/show_bug.cgi?id=562442
https://bugzilla.mozilla.org/show_bug.cgi?id=679494
https://bugzilla.mozilla.org/show_bug.cgi?id=679986
https://bugzilla.mozilla.org/show_bug.cgi?id=680687
https://bugzilla.mozilla.org/show_bug.cgi?id=682252
https://bugzilla.mozilla.org/show_bug.cgi?id=685186
https://bugzilla.mozilla.org/show_bug.cgi?id=685321
https://bugzilla.mozilla.org/show_bug.cgi?id=686107
https://bugzilla.mozilla.org/show_bug.cgi?id=688364
https://bugzilla.mozilla.org/show_bug.cgi?id=688974
https://bugzilla.mozilla.org/show_bug.cgi?id=689892
https://bugzilla.mozilla.org/show_bug.cgi?id=690376
https://bugzilla.mozilla.org/show_bug.cgi?id=691746
https://bugzilla.mozilla.org/show_bug.cgi?id=691873
https://bugzilla.mozilla.org/show_bug.cgi?id=693143
https://bugzilla.mozilla.org/show_bug.cgi?id=693144
https://bugzilla.mozilla.org/show_bug.cgi?id=694200
https://bugzilla.mozilla.org/show_bug.cgi?id=696579
https://bugzilla.mozilla.org/show_bug.cgi?id=697255
https://bugzilla.mozilla.org/show_bug.cgi?id=700512
https://bugzilla.mozilla.org/show_bug.cgi?id=701248
https://bugzilla.mozilla.org/show_bug.cgi?id=701637
https://bugzilla.mozilla.org/show_bug.cgi?id=706249
https://exchange.xforce.ibmcloud.com/vulnerabilities/71908
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14226
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html
http://osvdb.org/77952
http://secunia.com/advisories/47302
http://secunia.com/advisories/47334
http://secunia.com/advisories/49055
http://www.mandriva.com/security/advisories?name=MDVSA-2011:192
http://www.mozilla.org/security/announce/2011/mfsa2011-53.html Vendor Advisory
http://www.securitytracker.com/id?1026445
http://www.securitytracker.com/id?1026446
http://www.securitytracker.com/id?1026447
https://bugzilla.mozilla.org/show_bug.cgi?id=562442
https://bugzilla.mozilla.org/show_bug.cgi?id=679494
https://bugzilla.mozilla.org/show_bug.cgi?id=679986
https://bugzilla.mozilla.org/show_bug.cgi?id=680687
https://bugzilla.mozilla.org/show_bug.cgi?id=682252
https://bugzilla.mozilla.org/show_bug.cgi?id=685186
https://bugzilla.mozilla.org/show_bug.cgi?id=685321
https://bugzilla.mozilla.org/show_bug.cgi?id=686107
https://bugzilla.mozilla.org/show_bug.cgi?id=688364
https://bugzilla.mozilla.org/show_bug.cgi?id=688974
https://bugzilla.mozilla.org/show_bug.cgi?id=689892
https://bugzilla.mozilla.org/show_bug.cgi?id=690376
https://bugzilla.mozilla.org/show_bug.cgi?id=691746
https://bugzilla.mozilla.org/show_bug.cgi?id=691873
https://bugzilla.mozilla.org/show_bug.cgi?id=693143
https://bugzilla.mozilla.org/show_bug.cgi?id=693144
https://bugzilla.mozilla.org/show_bug.cgi?id=694200
https://bugzilla.mozilla.org/show_bug.cgi?id=696579
https://bugzilla.mozilla.org/show_bug.cgi?id=697255
https://bugzilla.mozilla.org/show_bug.cgi?id=700512
https://bugzilla.mozilla.org/show_bug.cgi?id=701248
https://bugzilla.mozilla.org/show_bug.cgi?id=701637
https://bugzilla.mozilla.org/show_bug.cgi?id=706249
https://exchange.xforce.ibmcloud.com/vulnerabilities/71908
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14226
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:4.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta1:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta10:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta11:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta12:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta2:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta3:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta4:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta5:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta6:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta7:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta8:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0:beta9:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:5.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:6.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:7.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:8.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:*:alpha:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:*:beta:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.0.99:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.5:1.1.10:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.18:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.1.19:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:1.5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0a1:*:pre:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.0a1pre:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:5.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:6.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:7.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:8.0:*:*:*:*:*:*:*
History

21 Nov 2024, 01:30

Type Values Removed Values Added
References () http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html - () http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html -
References () http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html - () http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html -
References () http://osvdb.org/77952 - () http://osvdb.org/77952 -
References () http://secunia.com/advisories/47302 - () http://secunia.com/advisories/47302 -
References () http://secunia.com/advisories/47334 - () http://secunia.com/advisories/47334 -
References () http://secunia.com/advisories/49055 - () http://secunia.com/advisories/49055 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2011:192 - () http://www.mandriva.com/security/advisories?name=MDVSA-2011:192 -
References () http://www.mozilla.org/security/announce/2011/mfsa2011-53.html - Vendor Advisory () http://www.mozilla.org/security/announce/2011/mfsa2011-53.html - Vendor Advisory
References () http://www.securitytracker.com/id?1026445 - () http://www.securitytracker.com/id?1026445 -
References () http://www.securitytracker.com/id?1026446 - () http://www.securitytracker.com/id?1026446 -
References () http://www.securitytracker.com/id?1026447 - () http://www.securitytracker.com/id?1026447 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=562442 - () https://bugzilla.mozilla.org/show_bug.cgi?id=562442 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=679494 - () https://bugzilla.mozilla.org/show_bug.cgi?id=679494 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=679986 - () https://bugzilla.mozilla.org/show_bug.cgi?id=679986 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=680687 - () https://bugzilla.mozilla.org/show_bug.cgi?id=680687 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=682252 - () https://bugzilla.mozilla.org/show_bug.cgi?id=682252 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=685186 - () https://bugzilla.mozilla.org/show_bug.cgi?id=685186 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=685321 - () https://bugzilla.mozilla.org/show_bug.cgi?id=685321 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=686107 - () https://bugzilla.mozilla.org/show_bug.cgi?id=686107 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=688364 - () https://bugzilla.mozilla.org/show_bug.cgi?id=688364 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=688974 - () https://bugzilla.mozilla.org/show_bug.cgi?id=688974 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=689892 - () https://bugzilla.mozilla.org/show_bug.cgi?id=689892 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=690376 - () https://bugzilla.mozilla.org/show_bug.cgi?id=690376 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=691746 - () https://bugzilla.mozilla.org/show_bug.cgi?id=691746 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=691873 - () https://bugzilla.mozilla.org/show_bug.cgi?id=691873 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=693143 - () https://bugzilla.mozilla.org/show_bug.cgi?id=693143 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=693144 - () https://bugzilla.mozilla.org/show_bug.cgi?id=693144 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=694200 - () https://bugzilla.mozilla.org/show_bug.cgi?id=694200 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=696579 - () https://bugzilla.mozilla.org/show_bug.cgi?id=696579 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=697255 - () https://bugzilla.mozilla.org/show_bug.cgi?id=697255 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=700512 - () https://bugzilla.mozilla.org/show_bug.cgi?id=700512 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=701248 - () https://bugzilla.mozilla.org/show_bug.cgi?id=701248 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=701637 - () https://bugzilla.mozilla.org/show_bug.cgi?id=701637 -
References () https://bugzilla.mozilla.org/show_bug.cgi?id=706249 - () https://bugzilla.mozilla.org/show_bug.cgi?id=706249 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/71908 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/71908 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14226 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14226 -
Information

Published : 2011-12-21 04:02

Updated : 2025-04-11 00:51

NVD link : CVE-2011-3660

Mitre link : CVE-2011-3660

CVE.ORG link : CVE-2011-3660

JSON object : View

Products Affected

mozilla

  • firefox
  • seamonkey
  • thunderbird
CWE
NVD-CWE-noinfo