CVE ID:	CVE-2011-2373
Description:	Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14, when JavaScript is disabled, allows remote attackers to execute arbitrary code via a crafted XUL document.
Test IDs:	1.3.6.1.4.1.25623.1.0.69977   1.3.6.1.4.1.25623.1.0.69975   1.3.6.1.4.1.25623.1.0.69980
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2373 Debian Security Information: DSA-2268 (Google Search) http://www.debian.org/security/2011/dsa-2268 Debian Security Information: DSA-2269 (Google Search) http://www.debian.org/security/2011/dsa-2269 Debian Security Information: DSA-2273 (Google Search) http://www.debian.org/security/2011/dsa-2273 http://www.mandriva.com/security/advisories?name=MDVSA-2011:111 RedHat Security Advisories: RHSA-2011:0885 http://www.redhat.com/support/errata/RHSA-2011-0885.html RedHat Security Advisories: RHSA-2011:0887 http://www.redhat.com/support/errata/RHSA-2011-0887.html RedHat Security Advisories: RHSA-2011:0888 http://www.redhat.com/support/errata/RHSA-2011-0888.html SuSE Security Announcement: SUSE-SA:2011:028 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-07/msg00001.html http://www.ubuntu.com/usn/USN-1149-1 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14178 http://secunia.com/advisories/45002 XForce ISS Database: thunderbird-xul-code-exec(68133) http://xforce.iss.net/xforce/xfdb/68133

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: