Published: 02/03/2011 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in Mozilla Firefox 3.6.x prior to 3.6.14, Thunderbird prior to 3.1.8, and SeaMonkey prior to 2.0.12 might allow remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 3.6.8
mozilla firefox 3.6.10
mozilla firefox 3.6.4
mozilla firefox 3.6.6
mozilla firefox 3.6.12
mozilla firefox 3.6.13
mozilla firefox 3.6.2
mozilla firefox 3.6.3
mozilla firefox 3.6.9
mozilla firefox 3.6.11
mozilla firefox 3.6.7
mozilla firefox 3.6
mozilla seamonkey 1.0.2
mozilla seamonkey 1.0.3
mozilla seamonkey 1.1
mozilla seamonkey 1.1.1
mozilla seamonkey 1.1.14
mozilla seamonkey 1.0.6
mozilla seamonkey 1.0.7
mozilla seamonkey 1.0
mozilla seamonkey 1.1.11
mozilla seamonkey 1.1.18
mozilla seamonkey 1.1.19
mozilla seamonkey 1.1.2
mozilla seamonkey 1.1.9
mozilla seamonkey 2.0.2
mozilla seamonkey 2.0.3
mozilla seamonkey 2.0
mozilla seamonkey 2.0.5
mozilla seamonkey 1.0.4
mozilla seamonkey 1.0.5
mozilla seamonkey 1.1.10
mozilla seamonkey 1.1.16
mozilla seamonkey 1.1.17
mozilla seamonkey 1.1.7
mozilla seamonkey 1.1.8
mozilla seamonkey 2.0.1
mozilla seamonkey 2.0.10
mozilla seamonkey
mozilla seamonkey 1.1.15
mozilla seamonkey 1.1.5
mozilla seamonkey 1.1.6
mozilla seamonkey 1.5.0.8
mozilla seamonkey 1.5.0.9
mozilla seamonkey 2.0.8
mozilla seamonkey 2.0.9
mozilla seamonkey 1.0.1
mozilla seamonkey 1.0.8
mozilla seamonkey 1.0.9
mozilla seamonkey 1.1.12
mozilla seamonkey 1.1.13
mozilla seamonkey 1.1.3
mozilla seamonkey 1.1.4
mozilla seamonkey 1.5.0.10
mozilla seamonkey 2.0.4
mozilla seamonkey 2.0.6
mozilla seamonkey 2.0.7
mozilla thunderbird 3.0.9
mozilla thunderbird 3.0.7
mozilla thunderbird 3.0.6
mozilla thunderbird 2.0.0.5
mozilla thunderbird 3.0.1
mozilla thunderbird 3.0.8
mozilla thunderbird 2.0.0.2
mozilla thunderbird 2.0.0.19
mozilla thunderbird 2.0.0.12
mozilla thunderbird 2.0.0.16
mozilla thunderbird 2.0.0.14
mozilla thunderbird 1.5.0.9
mozilla thunderbird 1.5.0.8
mozilla thunderbird 1.0.3
mozilla thunderbird 1.0.4
mozilla thunderbird 1.5.0.10
mozilla thunderbird 1.5.0.11
mozilla thunderbird 1.5.0.14
mozilla thunderbird 1.5
mozilla thunderbird 0.9
mozilla thunderbird 0.1
mozilla thunderbird 3.1.1
mozilla thunderbird 3.1.2
mozilla thunderbird 3.0.11
mozilla thunderbird 3.0.2
mozilla thunderbird 3.0.3
mozilla thunderbird 2.0.0.0
mozilla thunderbird 2.0.0.3
mozilla thunderbird 2.0
mozilla thunderbird 2.0.0.21
mozilla thunderbird 2.0.0.6
mozilla thunderbird 2.0.0.18
mozilla thunderbird 1.0.8
mozilla thunderbird 1.0.2
mozilla thunderbird 1.5.0.7
mozilla thunderbird 1.5.0.1
mozilla thunderbird 1.7.3
mozilla thunderbird 1.5.0.13
mozilla thunderbird 0.7.1
mozilla thunderbird 0.8
mozilla thunderbird 0.4
mozilla thunderbird 3.1
mozilla thunderbird
mozilla thunderbird 3.0.10
mozilla thunderbird 2.0.0.4
mozilla thunderbird 2.0.0.17
mozilla thunderbird 2.0.0.22
mozilla thunderbird 1.5.2
mozilla thunderbird 1.5.1
mozilla thunderbird 1.0.5
mozilla thunderbird 1.5.0.3
mozilla thunderbird 1.5.0.2
mozilla thunderbird 1.5.0.12
mozilla thunderbird 1.0
mozilla thunderbird 1.0.1
mozilla thunderbird 0.2
mozilla thunderbird 0.5
mozilla thunderbird 3.1.3
mozilla thunderbird 3.1.4
mozilla thunderbird 3.0
mozilla thunderbird 3.0.5
mozilla thunderbird 3.0.4
mozilla thunderbird 2.0.0.1
mozilla thunderbird 2.0.0.8
mozilla thunderbird 2.0.0.7
mozilla thunderbird 2.0.0.9
mozilla thunderbird 2.0.0.23
mozilla thunderbird 1.0.6
mozilla thunderbird 1.0.7
mozilla thunderbird 1.5.0.4
mozilla thunderbird 1.5.0.6
mozilla thunderbird 1.5.0.5
mozilla thunderbird 1.7.1
mozilla thunderbird 0.7.2
mozilla thunderbird 0.7.3
mozilla thunderbird 0.7
mozilla thunderbird 0.6
mozilla thunderbird 0.3
mozilla thunderbird 3.1.5
mozilla thunderbird 3.1.6

Thunderbird could be made to crash or run programs as your login if it opened specially crafted mail ...

Fixed Java applet regression introduced in the update for USN 1049-1 ...

Multiple browser flaws ...

Mozilla Foundation Security Advisory 2011-09 Crash caused by corrupted JPEG image Announced March 1, 2011 Reporter Jordi Chancel Impact Critical Products Firefox, Thunderbird Fixed in ...

CWE-119 https://bugzilla.mozilla.org/show_bug.cgi?id=610601 http://www.mozilla.org/security/announce/2011/mfsa2011-09.html http://www.securityfocus.com/bid/46651 http://www.mandriva.com/security/advisories?name=MDVSA-2011:041 http://www.mandriva.com/security/advisories?name=MDVSA-2011:042 http://downloads.avaya.com/css/P8/documents/100133195 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14486 https://nvd.nist.gov https://usn.ubuntu.com/1050-1/

Get Started

CVE-2011-0061

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect