PT-2011-4240 · Mozilla · Firefox+2

Michael Jordan

Publicado

2011-09-27

Atualizado

2024-12-12

CVE-2011-3002

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ANGLE versions prior to the version used in Mozilla Firefox 7.0 Mozilla Firefox versions prior to 7.0 SeaMonkey versions prior to 2.4

Description The issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly execute arbitrary code. This is achieved through vectors that trigger a memory-allocation error, resulting in a buffer overflow, due to the failure to validate the return value of a function call.

Recommendations For ANGLE, update to a version used in or after Mozilla Firefox 7.0 to resolve the issue. For Mozilla Firefox, update to version 7.0 or later. For SeaMonkey, update to version 2.4 or later.

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2011-3002

OPENSUSE-SU-2024:10071-1

OPENSUSE-SU-2024:14572-1

Produtos afetados

Angle

Firefox

Seamonkey

PT-2011-4240 · Mozilla · Firefox+2

CVE-2011-3002

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2065