Mozilla Products DOM Frame Denial Of Service Vulnerability (MAC OS X) Network Vulnerability

Summary

The host is installed with Mozilla firefox/thunderbird and is prone to denial of service vulnerability.

Impact

Successful exploitation will let attackers to cause a denial of service. Impact Level: Application

Solution

Upgrade to Mozilla Firefox version 9.0 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html Upgrade to Thunderbird version to 9.0 or later http://www.mozilla.org/en-US/thunderbird/ Upgrade to SeaMonkey version to 2.6 or later http://www.mozilla.org/projects/seamonkey/

Insight

The flaw is due to an error within the plugin handler when deleting DOM frame can be exploited to dereference memory.

Affected

Thunderbird version prior to 9.0 SeaMonkey version prior to 2.6 Mozilla Firefox version prior to 9.0

References

http://www.mozilla.org/security/announce/2011/mfsa2011-57.html
http://www.securityfocus.com/bid/51137/discuss

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3664

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apple Mac OS X Multiple Vulnerabilities - 02 Jan14
Apple Safari 'SRC' Remote Denial Of Service Vulnerability
Adobe Digital Edition Information Disclosure Vulnerability (Mac OS X)
Adobe Reader Unspecified Vulnerability (Windows)
Adobe Reader Plugin Signature Bypass Vulnerability (Windows)

Mozilla Products DOM Frame Denial of Service Vulnerability (MAC OS X)

Take action and discover your vulnerabilities