OSVDB ID: 72084 Title: Mozilla Multiple Products Unspecified Memory Corruption (2011-0072) |
Info |
|
|
Dates |
||||
|
|
Description |
A memory corruption flaw exists in Mozilla Firefox, Thunderbird and SeaMonkey. The programs fail to sanitize certain unspecified user-supplied input, resulting in memory corruption. Through unspecified vectors, a context-dependent attacker can execute arbitrary code. |
Classification |
Location:
Remote / Network Access,
Context Dependent
Attack Type: Input Manipulation Impact: Loss of Integrity Solution: Upgrade Exploit: Exploit Private Disclosure: Vendor Verified OSVDB: Web Related |
Solution |
Upgrade to Firefox to version 3.6.17 or 3.5.19 or higher, Thunderbird to 3.1.10 or higher and SeaMonkey to 2.0.14 or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. |
Products |
|
Credit |
Unknown or Incomplete |