CVE-2011-2988: Buffer Overflow
First published: Thu Aug 18 2011(Updated: )
Buffer overflow in an unspecified string class in the WebGL shader implementation in Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other products allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long source-code block for a shader.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla SeaMonkey | =2.0.10 | |
| Mozilla SeaMonkey | =2.2-beta2 | |
| Mozilla Firefox | =4.0-beta6 | |
| Mozilla Firefox | =4.0-beta1 | |
| Mozilla SeaMonkey | =2.0.13 | |
| Mozilla Firefox | =4.0-beta9 | |
| Mozilla Firefox | =4.0-beta5 | |
| Mozilla Firefox | =4.0-beta8 | |
| Mozilla SeaMonkey | =2.0.4 | |
| Mozilla Firefox | =4.0-beta12 | |
| Mozilla SeaMonkey | =2.1-alpha2 | |
| Mozilla SeaMonkey | =2.0.3 | |
| Mozilla SeaMonkey | =2.0.2 | |
| Mozilla SeaMonkey | =2.0-alpha_2 | |
| Mozilla SeaMonkey | =2.0.8 | |
| Mozilla SeaMonkey | =2.0-rc2 | |
| Mozilla SeaMonkey | =2.0-alpha_3 | |
| Mozilla SeaMonkey | =2.0.12 | |
| Mozilla Firefox | =4.0-beta3 | |
| Mozilla Firefox | =5.0 | |
| Mozilla SeaMonkey | =2.0.11 | |
| Mozilla Firefox | =4.0-beta2 | |
| Mozilla Firefox | =4.0-beta4 | |
| Mozilla SeaMonkey | =2.0-beta_2 | |
| Mozilla SeaMonkey | =2.1-rc1 | |
| Mozilla Firefox | =4.0-beta10 | |
| Mozilla SeaMonkey | =2.1 | |
| Mozilla SeaMonkey | =2.0-alpha_1 | |
| Mozilla SeaMonkey | =2.0.9 | |
| Mozilla SeaMonkey | =2.1-alpha1 | |
| Mozilla SeaMonkey | =2.1-beta2 | |
| Mozilla Firefox | =4.0 | |
| Mozilla SeaMonkey | =2.0.1 | |
| Mozilla Thunderbird | <=5.0 | |
| Mozilla SeaMonkey | =2.0.14 | |
| Mozilla SeaMonkey | =2.0.7 | |
| Mozilla SeaMonkey | =2.2 | |
| Mozilla SeaMonkey | =2.0-beta_1 | |
| Mozilla SeaMonkey | =2.1-rc2 | |
| Mozilla SeaMonkey | =2.1-beta1 | |
| Mozilla SeaMonkey | =2.0.5 | |
| Mozilla SeaMonkey | =2.1-beta3 | |
| Mozilla SeaMonkey | =2.0-rc1 | |
| Mozilla Firefox | =4.0-beta11 | |
| Mozilla SeaMonkey | =2.2-beta3 | |
| Mozilla SeaMonkey | =2.0.6 | |
| Mozilla Firefox | =4.0-beta7 | |
| Mozilla SeaMonkey | =2.1-alpha3 | |
| Mozilla SeaMonkey | =2.0 | |
| Mozilla Firefox | =4.0.1 | |
| Mozilla SeaMonkey | =2.2-beta1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.mozilla.org/show_bug.cgi?id=665936
- http://www.mozilla.org/security/announce/2011/mfsa2011-29.html
- http://www.mozilla.org/security/announce/2011/mfsa2011-33.html
- http://www.mozilla.org/security/announce/2011/mfsa2011-31.html
- http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00023.html
- http://secunia.com/advisories/49055
- http://www.securityfocus.com/bid/49242
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14270
Frequently Asked Questions
What is the severity of CVE-2011-2988?
CVE-2011-2988 is classified as a high severity vulnerability due to its potential to allow remote code execution or cause application crashes.
How do I fix CVE-2011-2988?
To fix CVE-2011-2988, update your Mozilla Firefox, Thunderbird, or SeaMonkey installation to a version that is not affected by this vulnerability.
Which versions are affected by CVE-2011-2988?
CVE-2011-2988 affects Mozilla Firefox versions 4.x through 5, Thunderbird versions before 6, and SeaMonkey versions before 2.3.
What types of attacks can CVE-2011-2988 lead to?
CVE-2011-2988 can lead to remote attackers executing arbitrary code or causing a denial of service due to application crashes.
Is CVE-2011-2988 related to WebGL functionality?
Yes, CVE-2011-2988 is specifically related to a buffer overflow in the WebGL shader implementation in affected Mozilla products.
- agent/references
- agent/type
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/tags
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- vendor/mozilla
- canonical/mozilla seamonkey
- version/mozilla seamonkey/2.0.10
- version/mozilla seamonkey/2.2-beta2
- canonical/mozilla firefox
- version/mozilla firefox/4.0-beta6
- version/mozilla firefox/4.0-beta1
- version/mozilla seamonkey/2.0.13
- version/mozilla firefox/4.0-beta9
- version/mozilla firefox/4.0-beta5
- version/mozilla firefox/4.0-beta8
- version/mozilla seamonkey/2.0.4
- version/mozilla firefox/4.0-beta12
- version/mozilla seamonkey/2.1-alpha2
- version/mozilla seamonkey/2.0.3
- version/mozilla seamonkey/2.0.2
- version/mozilla seamonkey/2.0-alpha_2
- version/mozilla seamonkey/2.0.8
- version/mozilla seamonkey/2.0-rc2
- version/mozilla seamonkey/2.0-alpha_3
- version/mozilla seamonkey/2.0.12
- version/mozilla firefox/4.0-beta3
- version/mozilla firefox/5.0
- version/mozilla seamonkey/2.0.11
- version/mozilla firefox/4.0-beta2
- version/mozilla firefox/4.0-beta4
- version/mozilla seamonkey/2.0-beta_2
- version/mozilla seamonkey/2.1-rc1
- version/mozilla firefox/4.0-beta10
- version/mozilla seamonkey/2.1
- version/mozilla seamonkey/2.0-alpha_1
- version/mozilla seamonkey/2.0.9
- version/mozilla seamonkey/2.1-alpha1
- version/mozilla seamonkey/2.1-beta2
- version/mozilla firefox/4.0
- version/mozilla seamonkey/2.0.1
- canonical/mozilla thunderbird
- version/mozilla thunderbird/5.0
- version/mozilla seamonkey/2.0.14
- version/mozilla seamonkey/2.0.7
- version/mozilla seamonkey/2.2
- version/mozilla seamonkey/2.0-beta_1
- version/mozilla seamonkey/2.1-rc2
- version/mozilla seamonkey/2.1-beta1
- version/mozilla seamonkey/2.0.5
- version/mozilla seamonkey/2.1-beta3
- version/mozilla seamonkey/2.0-rc1
- version/mozilla firefox/4.0-beta11
- version/mozilla seamonkey/2.2-beta3
- version/mozilla seamonkey/2.0.6
- version/mozilla firefox/4.0-beta7
- version/mozilla seamonkey/2.1-alpha3
- version/mozilla seamonkey/2.0
- version/mozilla firefox/4.0.1
- version/mozilla seamonkey/2.2-beta1