USN-1192-1

Executive Summary

Summary
Title	Firefox vulnerabilities

Informations
Name	USN-1192-1	First vendor Publication	2011-08-17
Vendor	Ubuntu	Last vendor Modification	2011-08-17
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.04

Summary:

Multiple Firefox vulnerabilities have been fixed

Software Description:
- firefox: Mozilla Open Source web browser

Details:

Aral Yaman discovered a vulnerability in the WebGL engine. An attacker
could potentially use this to crash Firefox or execute arbitrary code with
the privileges of the user invoking Firefox. (CVE-2011-2989)

Vivekanand Bolajwar discovered a vulnerability in the JavaScript engine. An
attacker could potentially use this to crash Firefox or execute arbitrary
code with the privileges of the user invoking Firefox. (CVE-2011-2991)

Bert Hubert and Theo Snelleman discovered a vulnerability in the Ogg
reader. An attacker could potentially use this to crash Firefox or execute
arbitrary code with the privileges of the user invoking Firefox.
(CVE-2011-2991)

Robert Kaiser, Jesse Ruderman, Gary Kwong, Christoph Diehl, Martijn
Wargers, Travis Emmitt, Bob Clary, and Jonathan Watt discovered multiple
memory vulnerabilities in the browser rendering engine. An attacker could
use these to possibly execute arbitrary code with the privileges of the
user invoking Firefox. (CVE-2011-2985)

Rafael Gieschke discovered that unsigned JavaScript could call into a
script inside a signed JAR. This could allow an attacker to execute
arbitrary code with the identity and permissions of the signed JAR.
(CVE-2011-2993)

Michael Jordon discovered that an overly long shader program could cause a
buffer overrun. An attacker could potentially use this to crash Firefox or
execute arbitrary code with the privileges of the user invoking Firefox.
(CVE-2011-2988)

Michael Jordon discovered a heap overflow in the ANGLE library used in
Firefox's WebGL implementation. An attacker could potentially use this to
crash Firefox or execute arbitrary code with the privileges of the user
invoking Firefox. (CVE-2011-2987)

It was discovered that an SVG text manipulation routine contained a
dangling pointer vulnerability. An attacker could potentially use this to
crash Firefox or execute arbitrary code with the privileges of the user
invoking Firefox. (CVE-2011-0084)

Mike Cardwell discovered that Content Security Policy violation reports
failed to strip out proxy authorization credentials from the list of
request headers. This could allow a malicious website to capture proxy
authorization credentials. Daniel Veditz discovered that redirecting to a
website with Content Security Policy resulted in the incorrect resolution
of hosts in the constructed policy. This could allow a malicious website to
circumvent the Content Security Policy of another website. (CVE-2011-2990)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.04:
firefox 6.0+build1+nobinonly-0ubuntu0.11.04.1

After a standard system update you need to restart Firefox to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1192-1
CVE-2011-0084, CVE-2011-2985, CVE-2011-2987, CVE-2011-2988,
CVE-2011-2989, CVE-2011-2990, CVE-2011-2991, CVE-2011-2992,
CVE-2011-2993

Package Information:
https://launchpad.net/ubuntu/+source/firefox/6.0+build1+nobinonly-0ubuntu0.11.04.1

Original Source

Url : http://www.ubuntu.com/usn/USN-1192-1

CWE : Common Weakness Enumeration

id	Name
CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
CWE-264	Permissions, Privileges, and Access Controls
CWE-255	Credentials Management
CWE-94	Failure to Control Generation of Code ('Code Injection')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:14502

Oval ID:	oval:org.mitre.oval:def:14502
Title:	The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox before 3.6.20, and 4.x through 5; Thunderbird 3.x before 3.1.12 and other versions before 6; SeaMonkey 2.x before 2.3; and possibly other products does not properly handle SVG text, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."
Description:	The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox before 3.6.20, and 4.x through 5; Thunderbird 3.x before 3.1.12 and other versions before 6; SeaMonkey 2.x before 2.3; and possibly other products does not properly handle SVG text, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0084	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Firefox Mozilla Thunderbird
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Firefox is less than or equal to 1.5.8 and is greater than or equal to 1.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is less than or equal to 1.5.8 AND Determine if the version of Mozilla Firefox is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is less than or equal to 2.0.0.20 and is greater than or equal to 2.0.0.1 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is less than or equal to 2.0.0.20 AND Determine if the version of Mozilla Firefox is greater than or equal to 2.0.0.1 OR Determine if the version of Mozilla Firefox is less than or equal to 3.6.19 and is greater than or equal to 3.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is less than or equal to 3.6.19 AND Determine if the version of Mozilla Firefox is greater than or equal to 3.0 OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1.11 and is greater than or equal to 3.0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1.11 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14440

Oval ID:	oval:org.mitre.oval:def:14440
Title:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2985	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 and is greater than or equal to 1.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0 OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 and is greater than or equal to 3.0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 and is greater than or equal to 0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 and is greater than or equal to 2.0.0.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 2.0.0.0 OR Determine if the version of Mozilla Thunderbird is equal to 5.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14285

Oval ID:	oval:org.mitre.oval:def:14285
Title:	Heap-based buffer overflow in Almost Native Graphics Layer Engine (ANGLE), as used in the WebGL implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products might allow remote attackers to execute arbitrary code via unspecified vectors.
Description:	Heap-based buffer overflow in Almost Native Graphics Layer Engine (ANGLE), as used in the WebGL implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products might allow remote attackers to execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2987	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14270

Oval ID:	oval:org.mitre.oval:def:14270
Title:	Buffer overflow in an unspecified string class in the WebGL shader implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long source-code block for a shader.
Description:	Buffer overflow in an unspecified string class in the WebGL shader implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long source-code block for a shader.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2988	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14528

Oval ID:	oval:org.mitre.oval:def:14528
Title:	The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products does not properly implement WebGL, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Description:	The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products does not properly implement WebGL, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2989	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 and is greater than or equal to 1.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 1.0 OR Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 and is greater than or equal to 1.0 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 1.0 OR Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 and is greater than or equal to 1.0 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0 OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 and is greater than or equal to 3.0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 and is greater than or equal to 0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 and is greater than or equal to 2.0.0.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 2.0.0.0 OR Determine if the version of Mozilla Thunderbird is equal to 5.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14458

Oval ID:	oval:org.mitre.oval:def:14458
Title:	The implementation of Content Security Policy (CSP) violation reports in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, and possibly other products does not remove proxy-authorization credentials from the listed request headers, which allows attackers to obtain sensitive information by reading a report, related to incorrect host resolution that occurs with certain redirects.
Description:	The implementation of Content Security Policy (CSP) violation reports in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, and possibly other products does not remove proxy-authorization credentials from the listed request headers, which allows attackers to obtain sensitive information by reading a report, related to incorrect host resolution that occurs with certain redirects.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2990	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 and is greater than or equal to 1.0 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 1.0 OR Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 and is greater than or equal to 1.0 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 1.5.0.10 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14303

Oval ID:	oval:org.mitre.oval:def:14303
Title:	The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products does not properly implement JavaScript, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Description:	The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products does not properly implement JavaScript, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2991	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 and is greater than or equal to 1.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0 OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 and is greater than or equal to 3.0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 and is greater than or equal to 0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 and is greater than or equal to 2.0.0.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 2.0.0.0 OR Determine if the version of Mozilla Thunderbird is equal to 5.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14209

Oval ID:	oval:org.mitre.oval:def:14209
Title:	The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Description:	The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6, and possibly other products allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2992	Version:	9
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Seamonkey Mozilla Thunderbird Mozilla Firefox
Definition Synopsis:
Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 and is greater than or equal to 1.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 1.0 OR Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0 OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 and is greater than or equal to 3.0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 and is greater than or equal to 0.1 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 OR Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 and is greater than or equal to 2.0.0.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 2.0.0.0 OR Determine if the version of Mozilla Thunderbird is equal to 5.0 Mozilla Thunderbird is installed AND Determine if the version of Mozilla Thunderbird is equal to 5.0

Definition Id: oval:org.mitre.oval:def:14055

Oval ID:	oval:org.mitre.oval:def:14055
Title:	The implementation of digital signatures for JAR files in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, and possibly other products does not prevent calls from unsigned JavaScript code to signed code, which allows remote attackers to bypass the Same Origin Policy and gain privileges via a crafted web site, a different vulnerability than CVE-2008-2801.
Description:	The implementation of digital signatures for JAR files in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, and possibly other products does not prevent calls from unsigned JavaScript code to signed code, which allows remote attackers to bypass the Same Origin Policy and gain privileges via a crafted web site, a different vulnerability than CVE-2008-2801.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-2993	Version:	7
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox Mozilla Seamonkey
Definition Synopsis:
Determine if the version of Mozilla Firefox is equal to 4.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 4.0 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 and is greater than or equal to 2.0.1 Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.1 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0.1 OR Determine if the version of Mozilla Firefox is equal to 5.0 Mozilla Firefox is installed AND Determine if the version of Mozilla Firefox is equal to 5.0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Mozilla Firefox cpe:/a:mozilla:firefox:5.0 cpe:/a:mozilla:firefox:4.0.1 cpe:/a:mozilla:firefox:4.0:beta6 cpe:/a:mozilla:firefox:4.0:beta10 cpe:/a:mozilla:firefox:4.0:beta2 cpe:/a:mozilla:firefox:4.0:beta11 cpe:/a:mozilla:firefox:4.0:beta3 cpe:/a:mozilla:firefox:4.0 cpe:/a:mozilla:firefox:4.0:beta4 cpe:/a:mozilla:firefox:4.0:beta5 cpe:/a:mozilla:firefox:4.0:beta7 cpe:/a:mozilla:firefox:4.0:beta12 cpe:/a:mozilla:firefox:4.0:beta8 cpe:/a:mozilla:firefox:4.0:beta9 cpe:/a:mozilla:firefox:4.0:beta1 cpe:/a:mozilla:firefox:3.6.9 cpe:/a:mozilla:firefox:3.6.8 cpe:/a:mozilla:firefox:3.6.7 cpe:/a:mozilla:firefox:3.6.6 cpe:/a:mozilla:firefox:3.6.4 cpe:/a:mozilla:firefox:3.6.3 cpe:/a:mozilla:firefox:3.6.2 cpe:/a:mozilla:firefox:3.6.19 cpe:/a:mozilla:firefox:3.6.18 cpe:/a:mozilla:firefox:3.6.17 cpe:/a:mozilla:firefox:3.6.16 cpe:/a:mozilla:firefox:3.6.15 cpe:/a:mozilla:firefox:3.6.14 cpe:/a:mozilla:firefox:3.6.13 cpe:/a:mozilla:firefox:3.6.12 cpe:/a:mozilla:firefox:3.6.11 cpe:/a:mozilla:firefox:3.6.10 cpe:/a:mozilla:firefox:3.6 cpe:/a:mozilla:firefox:3.5.9 cpe:/a:mozilla:firefox:3.5.8 cpe:/a:mozilla:firefox:3.5.7 cpe:/a:mozilla:firefox:3.5.6 cpe:/a:mozilla:firefox:3.5.5 cpe:/a:mozilla:firefox:3.5.4 cpe:/a:mozilla:firefox:3.5.3 cpe:/a:mozilla:firefox:3.5.2 cpe:/a:mozilla:firefox:3.5.19 cpe:/a:mozilla:firefox:3.5.18 cpe:/a:mozilla:firefox:3.5.17 cpe:/a:mozilla:firefox:3.5.16 cpe:/a:mozilla:firefox:3.5.15 cpe:/a:mozilla:firefox:3.5.14 cpe:/a:mozilla:firefox:3.5.13 cpe:/a:mozilla:firefox:3.5.12 cpe:/a:mozilla:firefox:3.5.11 cpe:/a:mozilla:firefox:3.5.10 cpe:/a:mozilla:firefox:3.5.1 cpe:/a:mozilla:firefox:3.5 cpe:/a:mozilla:firefox:3.0.9 cpe:/a:mozilla:firefox:3.0.8 cpe:/a:mozilla:firefox:3.0.7 cpe:/a:mozilla:firefox:3.0.6 cpe:/a:mozilla:firefox:3.0.5 cpe:/a:mozilla:firefox:3.0.4 cpe:/a:mozilla:firefox:3.0.3 cpe:/a:mozilla:firefox:3.0.2 cpe:/a:mozilla:firefox:3.0.17 cpe:/a:mozilla:firefox:3.0.16 cpe:/a:mozilla:firefox:3.0.15 cpe:/a:mozilla:firefox:3.0.14 cpe:/a:mozilla:firefox:3.0.13 cpe:/a:mozilla:firefox:3.0.12 cpe:/a:mozilla:firefox:3.0.11 cpe:/a:mozilla:firefox:3.0.10 cpe:/a:mozilla:firefox:3.0.1 cpe:/a:mozilla:firefox:3.0 cpe:/a:mozilla:firefox:2.0.0.9 cpe:/a:mozilla:firefox:2.0.0.8 cpe:/a:mozilla:firefox:2.0.0.7 cpe:/a:mozilla:firefox:2.0.0.6 cpe:/a:mozilla:firefox:2.0.0.5 cpe:/a:mozilla:firefox:2.0.0.4 cpe:/a:mozilla:firefox:2.0.0.3 cpe:/a:mozilla:firefox:2.0.0.20 cpe:/a:mozilla:firefox:2.0.0.2 cpe:/a:mozilla:firefox:2.0.0.19 cpe:/a:mozilla:firefox:2.0.0.18 cpe:/a:mozilla:firefox:2.0.0.17 cpe:/a:mozilla:firefox:2.0.0.16 cpe:/a:mozilla:firefox:2.0.0.15 cpe:/a:mozilla:firefox:2.0.0.14 cpe:/a:mozilla:firefox:2.0.0.13 cpe:/a:mozilla:firefox:2.0.0.12 cpe:/a:mozilla:firefox:2.0.0.11 cpe:/a:mozilla:firefox:2.0.0.10 cpe:/a:mozilla:firefox:2.0.0.1 cpe:/a:mozilla:firefox:2.0 cpe:/a:mozilla:firefox:1.5.8 cpe:/a:mozilla:firefox:1.5.7 cpe:/a:mozilla:firefox:1.5.6 cpe:/a:mozilla:firefox:1.5.5 cpe:/a:mozilla:firefox:1.5.4 cpe:/a:mozilla:firefox:1.5.3 cpe:/a:mozilla:firefox:1.5.2 cpe:/a:mozilla:firefox:1.5.1 cpe:/a:mozilla:firefox:1.5.0.9 cpe:/a:mozilla:firefox:1.5.0.8 cpe:/a:mozilla:firefox:1.5.0.7 cpe:/a:mozilla:firefox:1.5.0.6 cpe:/a:mozilla:firefox:1.5.0.5 cpe:/a:mozilla:firefox:1.5.0.4 cpe:/a:mozilla:firefox:1.5.0.3 cpe:/a:mozilla:firefox:1.5.0.2 cpe:/a:mozilla:firefox:1.5.0.12 cpe:/a:mozilla:firefox:1.5.0.11 cpe:/a:mozilla:firefox:1.5.0.10 cpe:/a:mozilla:firefox:1.5.0.1 cpe:/a:mozilla:firefox:1.5:beta1 cpe:/a:mozilla:firefox:1.5 cpe:/a:mozilla:firefox:1.5:beta2 cpe:/a:mozilla:firefox:1.0.8 cpe:/a:mozilla:firefox:1.0.7 cpe:/a:mozilla:firefox:1.0.6 cpe:/a:mozilla:firefox:1.0.5 cpe:/a:mozilla:firefox:1.0.4 cpe:/a:mozilla:firefox:1.0.3 cpe:/a:mozilla:firefox:1.0.2 cpe:/a:mozilla:firefox:1.0.1 cpe:/a:mozilla:firefox:1.0:preview_release cpe:/a:mozilla:firefox:1.0	125
Application	Mozilla Seamonkey cpe:/a:mozilla:seamonkey:2.2:beta1 cpe:/a:mozilla:seamonkey:2.2 cpe:/a:mozilla:seamonkey:2.2:beta3 cpe:/a:mozilla:seamonkey:2.2:beta2 cpe:/a:mozilla:seamonkey:2.1:beta2 cpe:/a:mozilla:seamonkey:2.1:beta3 cpe:/a:mozilla:seamonkey:2.1:rc2 cpe:/a:mozilla:seamonkey:2.1:beta1 cpe:/a:mozilla:seamonkey:2.1 cpe:/a:mozilla:seamonkey:2.1:rc1 cpe:/a:mozilla:seamonkey:2.1:alpha3 cpe:/a:mozilla:seamonkey:2.1:alpha1 cpe:/a:mozilla:seamonkey:2.1:alpha2 cpe:/a:mozilla:seamonkey:2.0.9 cpe:/a:mozilla:seamonkey:2.0.8 cpe:/a:mozilla:seamonkey:2.0.7 cpe:/a:mozilla:seamonkey:2.0.6 cpe:/a:mozilla:seamonkey:2.0.5 cpe:/a:mozilla:seamonkey:2.0.4 cpe:/a:mozilla:seamonkey:2.0.3 cpe:/a:mozilla:seamonkey:2.0.2 cpe:/a:mozilla:seamonkey:2.0.14 cpe:/a:mozilla:seamonkey:2.0.13 cpe:/a:mozilla:seamonkey:2.0.12 cpe:/a:mozilla:seamonkey:2.0.11 cpe:/a:mozilla:seamonkey:2.0.10 cpe:/a:mozilla:seamonkey:2.0.1 cpe:/a:mozilla:seamonkey:2.0:rc1 cpe:/a:mozilla:seamonkey:2.0:beta_1 cpe:/a:mozilla:seamonkey:2.0:alpha_1 cpe:/a:mozilla:seamonkey:2.0:beta_2 cpe:/a:mozilla:seamonkey:2.0:rc2 cpe:/a:mozilla:seamonkey:2.0:alpha_3 cpe:/a:mozilla:seamonkey:2.0:alpha_2 cpe:/a:mozilla:seamonkey:2.0 cpe:/a:mozilla:seamonkey:1.5.0.9 cpe:/a:mozilla:seamonkey:1.5.0.8 cpe:/a:mozilla:seamonkey:1.5.0.10 cpe:/a:mozilla:seamonkey:1.1.9 cpe:/a:mozilla:seamonkey:1.1.8 cpe:/a:mozilla:seamonkey:1.1.7 cpe:/a:mozilla:seamonkey:1.1.6 cpe:/a:mozilla:seamonkey:1.1.5 cpe:/a:mozilla:seamonkey:1.1.4 cpe:/a:mozilla:seamonkey:1.1.3 cpe:/a:mozilla:seamonkey:1.1.2 cpe:/a:mozilla:seamonkey:1.1.19 cpe:/a:mozilla:seamonkey:1.1.18 cpe:/a:mozilla:seamonkey:1.1.17 cpe:/a:mozilla:seamonkey:1.1.16 cpe:/a:mozilla:seamonkey:1.1.15 cpe:/a:mozilla:seamonkey:1.1.14 cpe:/a:mozilla:seamonkey:1.1.13 cpe:/a:mozilla:seamonkey:1.1.12 cpe:/a:mozilla:seamonkey:1.1.11 cpe:/a:mozilla:seamonkey:1.1.10 cpe:/a:mozilla:seamonkey:1.1.1 cpe:/a:mozilla:seamonkey:1.1:alpha cpe:/a:mozilla:seamonkey:1.1:beta cpe:/a:mozilla:seamonkey:1.1 cpe:/a:mozilla:seamonkey:1.0.9 cpe:/a:mozilla:seamonkey:1.0.8 cpe:/a:mozilla:seamonkey:1.0.7 cpe:/a:mozilla:seamonkey:1.0.6 cpe:/a:mozilla:seamonkey:1.0.5 cpe:/a:mozilla:seamonkey:1.0.4 cpe:/a:mozilla:seamonkey:1.0.3 cpe:/a:mozilla:seamonkey:1.0.2 cpe:/a:mozilla:seamonkey:1.0.1 cpe:/a:mozilla:seamonkey:1.0:alpha cpe:/a:mozilla:seamonkey:1.0 cpe:/a:mozilla:seamonkey:1.0:beta	72
Application	Mozilla Thunderbird cpe:/a:mozilla:thunderbird:5.0 cpe:/a:mozilla:thunderbird:3.1.9 cpe:/a:mozilla:thunderbird:3.1.8 cpe:/a:mozilla:thunderbird:3.1.7 cpe:/a:mozilla:thunderbird:3.1.6 cpe:/a:mozilla:thunderbird:3.1.5 cpe:/a:mozilla:thunderbird:3.1.4 cpe:/a:mozilla:thunderbird:3.1.3 cpe:/a:mozilla:thunderbird:3.1.2 cpe:/a:mozilla:thunderbird:3.1.11 cpe:/a:mozilla:thunderbird:3.1.10 cpe:/a:mozilla:thunderbird:3.1.1 cpe:/a:mozilla:thunderbird:3.1 cpe:/a:mozilla:thunderbird:3.0.9 cpe:/a:mozilla:thunderbird:3.0.8 cpe:/a:mozilla:thunderbird:3.0.7 cpe:/a:mozilla:thunderbird:3.0.6 cpe:/a:mozilla:thunderbird:3.0.5 cpe:/a:mozilla:thunderbird:3.0.4 cpe:/a:mozilla:thunderbird:3.0.3 cpe:/a:mozilla:thunderbird:3.0.2 cpe:/a:mozilla:thunderbird:3.0.11 cpe:/a:mozilla:thunderbird:3.0.10 cpe:/a:mozilla:thunderbird:3.0.1 cpe:/a:mozilla:thunderbird:3.0 cpe:/a:mozilla:thunderbird:2.0.0.9 cpe:/a:mozilla:thunderbird:2.0.0.8 cpe:/a:mozilla:thunderbird:2.0.0.7 cpe:/a:mozilla:thunderbird:2.0.0.6 cpe:/a:mozilla:thunderbird:2.0.0.5 cpe:/a:mozilla:thunderbird:2.0.0.4 cpe:/a:mozilla:thunderbird:2.0.0.3 cpe:/a:mozilla:thunderbird:2.0.0.23 cpe:/a:mozilla:thunderbird:2.0.0.22 cpe:/a:mozilla:thunderbird:2.0.0.21 cpe:/a:mozilla:thunderbird:2.0.0.2 cpe:/a:mozilla:thunderbird:2.0.0.19 cpe:/a:mozilla:thunderbird:2.0.0.18 cpe:/a:mozilla:thunderbird:2.0.0.17 cpe:/a:mozilla:thunderbird:2.0.0.16 cpe:/a:mozilla:thunderbird:2.0.0.14 cpe:/a:mozilla:thunderbird:2.0.0.12 cpe:/a:mozilla:thunderbird:2.0.0.1 cpe:/a:mozilla:thunderbird:2.0.0.0 cpe:/a:mozilla:thunderbird:2.0 cpe:/a:mozilla:thunderbird:1.7.3 cpe:/a:mozilla:thunderbird:1.7.1 cpe:/a:mozilla:thunderbird:1.5.2 cpe:/a:mozilla:thunderbird:1.5.1 cpe:/a:mozilla:thunderbird:1.5.0.9 cpe:/a:mozilla:thunderbird:1.5.0.8 cpe:/a:mozilla:thunderbird:1.5.0.7 cpe:/a:mozilla:thunderbird:1.5.0.6 cpe:/a:mozilla:thunderbird:1.5.0.5 cpe:/a:mozilla:thunderbird:1.5.0.4 cpe:/a:mozilla:thunderbird:1.5.0.3 cpe:/a:mozilla:thunderbird:1.5.0.2 cpe:/a:mozilla:thunderbird:1.5.0.14 cpe:/a:mozilla:thunderbird:1.5.0.13 cpe:/a:mozilla:thunderbird:1.5.0.12 cpe:/a:mozilla:thunderbird:1.5.0.11 cpe:/a:mozilla:thunderbird:1.5.0.10 cpe:/a:mozilla:thunderbird:1.5.0.1 cpe:/a:mozilla:thunderbird:1.5:beta2 cpe:/a:mozilla:thunderbird:1.5 cpe:/a:mozilla:thunderbird:1.0.8 cpe:/a:mozilla:thunderbird:1.0.7 cpe:/a:mozilla:thunderbird:1.0.6 cpe:/a:mozilla:thunderbird:1.0.5 cpe:/a:mozilla:thunderbird:1.0.4 cpe:/a:mozilla:thunderbird:1.0.3 cpe:/a:mozilla:thunderbird:1.0.2 cpe:/a:mozilla:thunderbird:1.0.1 cpe:/a:mozilla:thunderbird:1.0 cpe:/a:mozilla:thunderbird:0.9 cpe:/a:mozilla:thunderbird:0.8 cpe:/a:mozilla:thunderbird:0.7.3 cpe:/a:mozilla:thunderbird:0.7.2 cpe:/a:mozilla:thunderbird:0.7.1 cpe:/a:mozilla:thunderbird:0.7 cpe:/a:mozilla:thunderbird:0.6 cpe:/a:mozilla:thunderbird:0.5 cpe:/a:mozilla:thunderbird:0.4 cpe:/a:mozilla:thunderbird:0.3 cpe:/a:mozilla:thunderbird:0.2 cpe:/a:mozilla:thunderbird:0.1	86

Open Source Vulnerability Database (OSVDB)

id	Description
74596	Mozilla Multiple Products JAR Digital Signature Same Origin Policy Bypass Pri...
74595	Mozilla Multiple Products Ogg Reader Unspecified DoS
74594	Mozilla Multiple Products JavaScript Unspecified DoS
74593	Mozilla Multiple Products Content Security Policy (CSP) Violation Report Prox...
74592	Mozilla Multiple Products WebGL Unspecified DoS
74591	Mozilla Multiple Products WebGL Shader Compiler ShaderSource Method Overflow
74590	Mozilla Multiple Products WebGL Almost Native Graphics Layer Engine (ANGLE) S...
74588	Mozilla Multiple Products Multiple Unspecified Memory Corruption (2011-2985)
74581	Mozilla Multiple Products SVGTextElement.getCharNumAtPosition() Function SVG ...

Type	Count
Oval ID(s)	9
CPE ID(s)	283
osvdb(s)	9

Related	Severity
USN-1192-3	(Critical)
USN-1192-2	(Critical)
CVE-2011-2992	(Critical)
CVE-2011-2991	(Critical)
CVE-2011-2989	(Critical)
CVE-2011-2988	(Critical)
CVE-2011-2987	(Critical)
CVE-2011-2985	(Critical)
CVE-2011-0084	(Critical)
CVE-2011-2993	(Critical)
CVE-2011-2990	(Medium)