Mozilla Products Multiple Denial Of Service Vulnerabilities July-11 (Windows) Network Vulnerability

Summary

The host is installed with Mozilla Firefox or Thunderbird and is prone to multiple denial of service vulnerabilities.

Impact

Successful exploitation will let remote attackers to execute arbitrary code or cause a denial of service. Impact Level: Application

Solution

Upgrade to Firefox version 3.6.18 or later http://www.mozilla.com/en-US/firefox/all.html Upgrade to Thunderbird version 3.1.11 or later http://www.mozillamessaging.com/en-US/thunderbird/

Insight

Multiple flaws are due to unspecified errors in the browser engine, that allows remote attackers to cause a denial of service or possibly execute arbitrary code.

Affected

Thunderbird version before 3.1.11. Mozilla Firefox versions 3.6.x before 3.6.18.

References

http://www.mozilla.org/security/announce/2011/mfsa2011-23.html
http://www.mozilla.org/security/announce/2011/mfsa2011-24.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2364, CVE-2011-2365

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Digital Edition Denial of Service Vulnerability (Windows)
Allegro Software RomPager 2.10 Denial of Service
Apple iTunes Malformed .mov File Buffer Overflow Vulnerability
Adobe Reader/Acrobat Denial of Service Vulnerability (May09)
AppSocket DoS

Mozilla Products Multiple Denial of Service Vulnerabilities July-11 (Windows)

Take action and discover your vulnerabilities