CVE-2011-2998

2011-09-30 12:55:03 2017-09-19 03:33:30

Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a large RegExp expression.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Mozilla - Firefox

Advisory	Patch	Confirmed	Link
			https://bugzilla.mozilla.org/show_bug.cgi?id=684815
			RHSA-2011:1341
			http://www.mozilla.org/security/announce/2011/mfsa2011-3...
			MDVSA-2011:141
			MDVSA-2011:140
			MDVSA-2011:139
			DSA-2317
			DSA-2313
			DSA-2312
			SUSE-SU-2011:1256

CVE-2011-2998

2011-09-30 12:55:03 2017-09-19 03:33:30

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)