First published: Tue May 01 2012(Updated: )
The Inter-process Communication (IPC) implementation in Google Chrome before 18.0.1025.168, as used in Mozilla Firefox before 38.0 and other products, does not properly validate messages, which has unspecified impact and attack vectors.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
openSUSE | =13.1 | |
openSUSE | =13.2 | |
Thunderbird | <=31.6 | |
Mozilla SeaMonkey | <=2.33.0 | |
Thunderbird | <=38.0 | |
Firefox ESR | <=31.6 | |
Google Chrome | <=18.0.1025.166 | |
Firefox | <=37.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-3079 is classified with unspecified severity, as it impacts inter-process communication in several browsers.
To fix CVE-2011-3079, update Google Chrome to version 18.0.1025.168 or later, and update affected Mozilla products to their respective fixed versions.
CVE-2011-3079 affects Google Chrome versions prior to 18.0.1025.168.
CVE-2011-3079 affects Mozilla Firefox versions up to 37.0.2.
Yes, CVE-2011-3079 also impacts Mozilla SeaMonkey, Thunderbird, and Firefox ESR prior to specific versions.