Summary
The host is installed with Mozilla Firefox, Seamonkey or Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation will let remote attackers to execute arbitrary code or cause a denial of service.
Impact Level: Application
Solution
Upgrade to Firefox version 3.5.19, 3.6.17, 4.0.1 or later http://www.mozilla.com/en-US/firefox/all.html
Upgrade to Seamonkey version 2.0.14 or later
http://www.seamonkey-project.org/releases/
Upgrade to Thunderbird version 3.1.10 or later
http://www.mozillamessaging.com/en-US/thunderbird/
Insight
The flaws are due to multiple Unspecified errors in the browser engine allows remote attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Affected
SeaMonkey versions before 2.0.14.
Thunderbird version before 3.1.10
Mozilla Firefox versions 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1
References
Severity
Classification
-
CVE CVE-2011-0069, CVE-2011-0070 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Windows)
- Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Windows)
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
- Adobe AIR Multiple Vulnerabilities-01 Sep14 (Windows)