CVE Vulnerabilities

CVE-2011-2998

Published: Sep 30, 2011 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla 3.6.2 3.6.2
Firefox Mozilla 3.6.3 3.6.3
Firefox Mozilla 3.6.15 3.6.15
Firefox Mozilla 3.6.17 3.6.17
Firefox Mozilla 3.6.11 3.6.11
Firefox Mozilla 3.6.8 3.6.8
Firefox Mozilla 3.6.9 3.6.9
Firefox Mozilla 3.6.14 3.6.14
Firefox Mozilla 3.6.12 3.6.12
Firefox Mozilla 3.6.6 3.6.6
Firefox Mozilla 3.6.21 3.6.21
Firefox Mozilla 3.6.16 3.6.16
Firefox Mozilla 3.6.10 3.6.10
Firefox Mozilla 3.6.19 3.6.19
Firefox Mozilla 3.6.7 3.6.7
Firefox Mozilla 3.6.4 3.6.4
Firefox Mozilla 3.6.18 3.6.18
Firefox Mozilla 3.6.20 3.6.20
Firefox Mozilla 3.6 3.6
Firefox Mozilla 3.6.22 3.6.22
Firefox Mozilla 3.6.13 3.6.13

References