Mozilla Products Multiple Denial Of Service Vulnerabilities July-11 (Windows) Network Vulnerability

Summary

The host is installed with Mozilla Firefox or Thunderbird and is prone to multiple denial of service vulnerabilities.

Impact

Successful exploitation will let remote attackers to execute arbitrary code or cause a denial of service. Impact Level: Application

Solution

Upgrade to Firefox version 3.6.18 or later http://www.mozilla.com/en-US/firefox/all.html Upgrade to Thunderbird version 3.1.11 or later http://www.mozillamessaging.com/en-US/thunderbird/

Insight

Multiple flaws are due to unspecified errors in the browser engine, that allows remote attackers to cause a denial of service or possibly execute arbitrary code.

Affected

Thunderbird version before 3.1.11. Mozilla Firefox versions 3.6.x before 3.6.18.

References

http://www.mozilla.org/security/announce/2011/mfsa2011-23.html
http://www.mozilla.org/security/announce/2011/mfsa2011-24.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2364, CVE-2011-2365
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader '.ETD File' Denial of Service Vulnerability (Linux)
Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Linux)
Adobe Reader/Acrobat Denial of Service Vulnerability (May09)
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
CA kmxfw.sys Code Execution and DoS Vulnerabilities

Mozilla Products Multiple Denial of Service Vulnerabilities July-11 (Windows)

Take action and discover your vulnerabilities