CVE-2011-2372 in Firefoxinformazioni

Riassunto

di MITRE

Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the holding of the Enter key, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

03/06/2011

Divulgazione

28/09/2011

Moderazione

accettato

Voce

VDB-58770

CPE

pronto

CWE

CWE-264 (confermato)

CVSS

3.5 (NVD)

EPSS

0.00921

KEV

Attività

molto basso

Settore

Finance, Transportation, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2372
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2372
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2372/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!