CVE-2011-0057

Sažetak

Use-after-free vulnerability in the Web Workers implementation in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to execute arbitrary code via vectors related to a JavaScript Worker and garbage collection.

Reference

http://downloads.avaya.com/css/P8/documents/100133195
http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
http://www.mozilla.org/security/announce/2011/mfsa2011-06.html
http://www.securityfocus.com/bid/46663
https://bugzilla.mozilla.org/show_bug.cgi?id=626631
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14200

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

19-09-2017 - 01:31

Objavljeno

02-03-2011 - 20:00