Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2011-2995 to a friend New vulnerability? New tool? Tell us	CVE-2011-2995 Mozilla Firefox Remote-Memory Corruption Vulnerability     Credit: The original article can be found at: http://www.securityfocus.com/bid/49810 The information has been provided by Benjamin Smedberg, Bob Clary, and Jesse Ruderman. Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2011-2995 Details Check for CVE-2011-2995 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Mozilla Firefox 3.6.13  * Mozilla Firefox 3.6.13  * Mozilla Firefox 3.6.10  * Mozilla Firefox 3.6.9  * Mozilla Firefox 3.6.8  * Mozilla Firefox 3.6.6  * Mozilla Firefox 3.6.4  * Mozilla Firefox 3.6.3  * Mozilla Firefox 3.6.2  * Mozilla Firefox 3.6.2  * Mozilla Firefox 6  * Mozilla Firefox 3.6.7  * Mozilla Firefox 3.6.6  * Mozilla Firefox 3.6.20  * Mozilla Firefox 3.6.19  * Mozilla Firefox 3.6.18  * Mozilla Firefox 3.6.17  * Mozilla Firefox 3.6.16  * Mozilla Firefox 3.6.15  * Mozilla Firefox 3.6.14  * Mozilla Firefox 3.6.12  * Mozilla Firefox 3.6.11  * Mozilla Firefox 3.6 Non-Vulnerable Systems:  * Mozilla Firefox 7  * Mozilla Firefox 3.6.23 The issue occurs when parsing specially crafted files and can be exploited to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Vendor Status: Mozilla as issued an update for this vulnerablity Patch Availability: http://www.mozilla.org/en-US/products/download.html?product=firefox-12.0&os=win&lang=en-US CVE Information: CVE-2011-2995 Disclosure Timeline: Initial Release Sep 27 2011  Comments on CVE-2011-2995:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®