CVE-2011-3647 in Firefoxinfo

Zusammenfassung (Englisch)

The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior, a related issue to CVE-2011-3004.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

23.09.2011

Veröffentlichung

09.11.2011

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
59397	Mozilla Firefox erweiterte Rechte	20	Nicht definiert	Offizieller Fix	CVE-2011-3647

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!