First published: Wed Mar 02 2011(Updated: )
Buffer overflow in the JavaScript engine in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to execute arbitrary code via vectors involving non-local JavaScript variables, aka an "upvarMap" issue.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Firefox | =3.6.2 | |
Firefox | =3.6.3 | |
Firefox | =3.6.11 | |
Firefox | =3.6.8 | |
Firefox | =3.6.9 | |
Firefox | =3.6.12 | |
Firefox | =3.6.6 | |
Firefox | =3.6.10 | |
Firefox | =3.6.7 | |
Firefox | =3.6.4 | |
Firefox | =3.6 | |
Firefox | =3.6.13 | |
Mozilla SeaMonkey | =2.0.10 | |
Mozilla SeaMonkey | =1.1.10 | |
Mozilla SeaMonkey | =1.0.3 | |
Mozilla SeaMonkey | =1.1.8 | |
Mozilla SeaMonkey | =1.0.1 | |
Mozilla SeaMonkey | =1.1.7 | |
Mozilla SeaMonkey | =1.5.0.10 | |
Mozilla SeaMonkey | =1.0.6 | |
Mozilla SeaMonkey | =1.0.9 | |
Mozilla SeaMonkey | =1.1.3 | |
Mozilla SeaMonkey | =2.0.4 | |
Mozilla SeaMonkey | =1.0 | |
Mozilla SeaMonkey | =2.0.3 | |
Mozilla SeaMonkey | =2.0.2 | |
Mozilla SeaMonkey | =1.1.17 | |
Mozilla SeaMonkey | =2.0-alpha_2 | |
Mozilla SeaMonkey | =1.1.5 | |
Mozilla SeaMonkey | =2.0.8 | |
Mozilla SeaMonkey | =1.0.7 | |
Mozilla SeaMonkey | =1.0-beta | |
Mozilla SeaMonkey | =1.1-alpha | |
Mozilla SeaMonkey | =2.0-rc2 | |
Mozilla SeaMonkey | =2.0-alpha_3 | |
Mozilla SeaMonkey | =1.0-alpha | |
Mozilla SeaMonkey | =1.1.12 | |
Mozilla SeaMonkey | =1.1 | |
Mozilla SeaMonkey | =1.1.14 | |
Mozilla SeaMonkey | =1.1.2 | |
Mozilla SeaMonkey | =2.0-beta_2 | |
Mozilla SeaMonkey | =1.0.2 | |
Mozilla SeaMonkey | =1.0.8 | |
Mozilla SeaMonkey | =1.1.11 | |
Mozilla SeaMonkey | =2.0-alpha_1 | |
Mozilla SeaMonkey | =1.5.0.9 | |
Mozilla SeaMonkey | =1.1-beta | |
Mozilla SeaMonkey | =1.1.1 | |
Mozilla SeaMonkey | =2.0.9 | |
Mozilla SeaMonkey | =1.5.0.8 | |
Mozilla SeaMonkey | =2.0.1 | |
Mozilla SeaMonkey | =1.0.5 | |
Mozilla SeaMonkey | =1.1.15 | |
Mozilla SeaMonkey | =1.1.6 | |
Mozilla SeaMonkey | =2.0.7 | |
Mozilla SeaMonkey | =1.1.16 | |
Mozilla SeaMonkey | <=2.0.11 | |
Mozilla SeaMonkey | =2.0-beta_1 | |
Mozilla SeaMonkey | =1.1.19 | |
Mozilla SeaMonkey | =2.0.5 | |
Mozilla SeaMonkey | =2.0-rc1 | |
Mozilla SeaMonkey | =1.0.4 | |
Mozilla SeaMonkey | =1.1.9 | |
Mozilla SeaMonkey | =1.1.13 | |
Mozilla SeaMonkey | =1.1.18 | |
Mozilla SeaMonkey | =2.0.6 | |
Mozilla SeaMonkey | =2.0 | |
Mozilla SeaMonkey | =1.1.4 | |
Firefox | =2.0.0.12 | |
Firefox | =1.5-beta2 | |
Firefox | =3.0.17 | |
Firefox | =3.5.3 | |
Firefox | =3.0.7 | |
Firefox | =1.5.2 | |
Firefox | =3.0.9 | |
Firefox | =1.5.0.6 | |
Firefox | =2.0.0.2 | |
Firefox | =1.5.0.10 | |
Firefox | =1.5.0.3 | |
Firefox | <=3.5.16 | |
Firefox | =3.5.6 | |
Firefox | =3.0.8 | |
Firefox | =1.5.0.11 | |
Firefox | =1.5.4 | |
Firefox | =1.0.2 | |
Firefox | =3.5 | |
Firefox | =3.5.5 | |
Firefox | =3.0.4 | |
Firefox | =1.5-beta1 | |
Firefox | =3.5.9 | |
Firefox | =3.5.4 | |
Firefox | =3.5.7 | |
Firefox | =3.0.5 | |
Firefox | =3.5.11 | |
Firefox | =1.5 | |
Firefox | =3.5.14 | |
Firefox | =1.0.4 | |
Firefox | =2.0.0.7 | |
Firefox | =1.0.7 | |
Firefox | =3.5.10 | |
Firefox | =3.5.1 | |
Firefox | =2.0.0.9 | |
Firefox | =3.0.14 | |
Firefox | =3.5.2 | |
Firefox | =2.0.0.16 | |
Firefox | =1.5.6 | |
Firefox | =2.0.0.17 | |
Firefox | =2.0.0.15 | |
Firefox | =3.0.10 | |
Firefox | =3.0.12 | |
Firefox | =1.0 | |
Firefox | =3.0.3 | |
Firefox | =1.5.0.7 | |
Firefox | =2.0 | |
Firefox | =1.0.1 | |
Firefox | =2.0.0.14 | |
Firefox | =3.0.6 | |
Firefox | =3.0.15 | |
Firefox | =1.5.0.8 | |
Firefox | =2.0.0.3 | |
Firefox | =3.5.12 | |
Firefox | =1.5.0.9 | |
Firefox | =1.5.0.5 | |
Firefox | =1.5.7 | |
Firefox | =1.5.0.12 | |
Firefox | =2.0.0.6 | |
Firefox | =3.0 | |
Firefox | =2.0.0.11 | |
Firefox | =1.5.0.2 | |
Firefox | =1.0.3 | |
Firefox | =3.0.1 | |
Firefox | =2.0.0.4 | |
Firefox | =1.5.1 | |
Firefox | =2.0.0.13 | |
Firefox | =2.0.0.18 | |
Firefox | =3.5.13 | |
Firefox | =2.0.0.1 | |
Firefox | =3.0.2 | |
Firefox | =3.5.8 | |
Firefox | =1.5.5 | |
Firefox | =1.0-preview_release | |
Firefox | =3.5.15 | |
Firefox | =2.0.0.20 | |
Firefox | =2.0.0.8 | |
Firefox | =2.0.0.19 | |
Firefox | =1.5.8 | |
Firefox | =1.5.3 | |
Firefox | =1.5.0.4 | |
Firefox | =1.5.0.1 | |
Firefox | =3.0.13 | |
Firefox | =1.0.5 | |
Firefox | =2.0.0.5 | |
Firefox | =2.0.0.10 | |
Firefox | =1.0.6 | |
Firefox | =3.0.16 | |
Firefox | =1.0.8 | |
Firefox | =3.0.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-0054 is considered a critical vulnerability due to the potential for remote code execution.
To fix CVE-2011-0054, update your Mozilla Firefox or SeaMonkey browser to the latest version specified by Mozilla.
CVE-2011-0054 affects Mozilla Firefox versions prior to 3.5.17 and 3.6.x prior to 3.6.14, as well as SeaMonkey versions prior to 2.0.12.
CVE-2011-0054 is classified as a buffer overflow vulnerability in the JavaScript engine.
Yes, CVE-2011-0054 can be exploited remotely through malicious JavaScript code.