Summary
The host is installed with Mozilla Firefox or Thunderbird and is prone to unspecified vulnerability.
Impact
Successful exploitation will let remote attackers to a cause a denial of service or possibly execute arbitrary code.
Impact Level: Application
Solution
Upgrade to Firefox version 3.6.17, 4.0.1 or later
http://www.mozilla.com/en-US/firefox/all.html
Upgrade to Thunderbird version 3.1.10 or later
http://www.mozillamessaging.com/en-US/thunderbird/
Insight
The flaw is due to unspecified vulnerability in the browser engine which allows remote attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Affected
Thunderbird 3.1.x before 3.1.10
Mozilla Firefox versions 3.6.x before 3.6.17 and 4.x before 4.0.1
References
Severity
Classification
-
CVE CVE-2011-0081 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X)
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
- Adobe Flash Media Server Multiple Remote Security Vulnerabilities