Summary
The host is installed with Mozilla Firefox, Seamonkey or Thunderbird and is prone to multiple vulnerabilities.
Impact
Successful exploitation will let remote attackers to execute arbitrary code or cause a denial of service.
Impact Level: Application
Solution
Upgrade to Firefox version 3.5.19, 3.6.17, 4.0.1 or later http://www.mozilla.com/en-US/firefox/all.html
Upgrade to Seamonkey version 2.0.14 or later
http://www.seamonkey-project.org/releases/
Upgrade to Thunderbird version 3.1.10 or later
http://www.mozillamessaging.com/en-US/thunderbird/
Insight
The flaws are due to multiple Unspecified errors in the browser engine allows remote attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Affected
SeaMonkey versions before 2.0.14.
Thunderbird version before 3.1.10
Mozilla Firefox versions 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1
References
Severity
Classification
-
CVE CVE-2011-0069, CVE-2011-0070 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Air Remote Code Execution Vulnerability -June13 (Windows)
- Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)
- 7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)