7.5
CVE-2011-3665
- EPSS 2.63%
- Veröffentlicht 21.12.2011 04:02:01
- Zuletzt bearbeitet 16.06.2026 23:33:43
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an Ogg VIDEO element that is not properly handled after scaling.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mozilla ≫ Thunderbird Version5.0
Mozilla ≫ Thunderbird Version6.0
Mozilla ≫ Thunderbird Version6.0.1
Mozilla ≫ Thunderbird Version6.0.2
Mozilla ≫ Thunderbird Version7.0
Mozilla ≫ Thunderbird Version7.0.1
Mozilla ≫ Thunderbird Version8.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.63% | 0.835 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html
http://secunia.com/advisories/47302
http://secunia.com/advisories/47334
http://www.mandriva.com/security/advisories?name=MDVSA-2011:192
http://www.securitytracker.com/id?1026445
http://www.securitytracker.com/id?1026446
http://www.securitytracker.com/id?1026447
http://osvdb.org/77956
http://www.mozilla.org/security/announce/2011/mfsa2011-58.html
https://bugzilla.mozilla.org/show_bug.cgi?id=701259
https://exchange.xforce.ibmcloud.com/vulnerabilities/71913
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14640