csaf_redhat - rhsa-2010

rhsa-2010_0969

Vulnerability from csaf_redhat

Published

2010-12-09 23:53

Modified

2024-09-13 06:02

Summary

Red Hat Security Advisory: thunderbird security update

Notes

Topic

An updated thunderbird package that fixes several security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details

Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the processing of malformed HTML content. Malicious HTML content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2010-3776, CVE-2010-3777) Note: JavaScript support is disabled in Thunderbird for mail messages. The above issues are believed to not be exploitable without JavaScript. This update adds support for the Sanitiser for OpenType (OTS) library to Thunderbird. This library helps prevent potential exploits in malformed OpenType fonts by verifying the font file prior to use. (CVE-2010-3768) All Thunderbird users should upgrade to this updated package, which resolves these issues. All running instances of Thunderbird must be restarted for the update to take effect.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated thunderbird package that fixes several security issues is now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSeveral flaws were found in the processing of malformed HTML content.\nMalicious HTML content could cause Thunderbird to crash or, potentially,\nexecute arbitrary code with the privileges of the user running Thunderbird.\n(CVE-2010-3776, CVE-2010-3777)\n\nNote: JavaScript support is disabled in Thunderbird for mail messages. The\nabove issues are believed to not be exploitable without JavaScript.\n\nThis update adds support for the Sanitiser for OpenType (OTS) library to Thunderbird. This library helps prevent potential exploits in malformed OpenType fonts by verifying the font file prior to use. (CVE-2010-3768)\n\nAll Thunderbird users should upgrade to this updated package, which\nresolves these issues. All running instances of Thunderbird must be\nrestarted for the update to take effect.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2010:0969",
        "url": "https://access.redhat.com/errata/RHSA-2010:0969"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "660408",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660408"
      },
      {
        "category": "external",
        "summary": "660415",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660415"
      },
      {
        "category": "external",
        "summary": "660420",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660420"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://access.redhat.com/security/data/csaf/v2/advisories/2010/rhsa-2010_0969.json"
      }
    ],
    "title": "Red Hat Security Advisory: thunderbird security update",
    "tracking": {
      "current_release_date": "2024-09-13T06:02:18+00:00",
      "generator": {
        "date": "2024-09-13T06:02:18+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "3.33.3"
        }
      },
      "id": "RHSA-2010:0969",
      "initial_release_date": "2010-12-09T23:53:00+00:00",
      "revision_history": [
        {
          "date": "2010-12-09T23:53:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2010-12-09T18:55:57+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-09-13T06:02:18+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop (v. 6)",
                  "product_id": "6Client",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                  "product_id": "6Server-optional",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                  "product_id": "6Workstation",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:3.1.7-3.el6_0.i686",
                "product": {
                  "name": "thunderbird-0:3.1.7-3.el6_0.i686",
                  "product_id": "thunderbird-0:3.1.7-3.el6_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@3.1.7-3.el6_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
                "product": {
                  "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
                  "product_id": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@3.1.7-3.el6_0?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:3.1.7-3.el6_0.ppc64",
                "product": {
                  "name": "thunderbird-0:3.1.7-3.el6_0.ppc64",
                  "product_id": "thunderbird-0:3.1.7-3.el6_0.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@3.1.7-3.el6_0?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
                "product": {
                  "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
                  "product_id": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@3.1.7-3.el6_0?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:3.1.7-3.el6_0.src",
                "product": {
                  "name": "thunderbird-0:3.1.7-3.el6_0.src",
                  "product_id": "thunderbird-0:3.1.7-3.el6_0.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@3.1.7-3.el6_0?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:3.1.7-3.el6_0.s390x",
                "product": {
                  "name": "thunderbird-0:3.1.7-3.el6_0.s390x",
                  "product_id": "thunderbird-0:3.1.7-3.el6_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@3.1.7-3.el6_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
                "product": {
                  "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
                  "product_id": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@3.1.7-3.el6_0?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:3.1.7-3.el6_0.x86_64",
                "product": {
                  "name": "thunderbird-0:3.1.7-3.el6_0.x86_64",
                  "product_id": "thunderbird-0:3.1.7-3.el6_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@3.1.7-3.el6_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
                "product": {
                  "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
                  "product_id": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@3.1.7-3.el6_0?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-0:3.1.7-3.el6_0.src"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.src",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Client"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.src",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Server-optional"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-0:3.1.7-3.el6_0.src"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.src",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
        "relates_to_product_reference": "6Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
        "relates_to_product_reference": "6Workstation"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2010-3768",
      "discovery_date": "2010-12-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "660420"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system\u0027s font implementation, which allows remote attackers to execute arbitrary code via vectors related to @font-face Cascading Style Sheets (CSS) rules.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla add support for OTS font sanitizer (MFSA 2010-78)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-0:3.1.7-3.el6_0.src",
          "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2010-3768"
        },
        {
          "category": "external",
          "summary": "RHBZ#660420",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660420"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3768",
          "url": "https://www.cve.org/CVERecord?id=CVE-2010-3768"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3768",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3768"
        }
      ],
      "release_date": "2010-12-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2010:0969"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla add support for OTS font sanitizer (MFSA 2010-78)"
    },
    {
      "cve": "CVE-2010-3776",
      "discovery_date": "2010-12-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "660408"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla miscellaneous memory safety hazards (MFSA 2010-74)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-0:3.1.7-3.el6_0.src",
          "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2010-3776"
        },
        {
          "category": "external",
          "summary": "RHBZ#660408",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660408"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2010-3776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3776"
        }
      ],
      "release_date": "2010-12-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2010:0969"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla miscellaneous memory safety hazards (MFSA 2010-74)"
    },
    {
      "cve": "CVE-2010-3777",
      "discovery_date": "2010-12-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "660415"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and Thunderbird 3.1.x before 3.1.7 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla miscellaneous memory safety hazards (MFSA 2010-74)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-0:3.1.7-3.el6_0.src",
          "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
          "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
          "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
          "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2010-3777"
        },
        {
          "category": "external",
          "summary": "RHBZ#660415",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660415"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3777",
          "url": "https://www.cve.org/CVERecord?id=CVE-2010-3777"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3777",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3777"
        }
      ],
      "release_date": "2010-12-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2010:0969"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Client:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-0:3.1.7-3.el6_0.src",
            "6Client:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Client:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.src",
            "6Server-optional:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Server-optional:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.src",
            "6Workstation:thunderbird-0:3.1.7-3.el6_0.x86_64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.i686",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.ppc64",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.s390x",
            "6Workstation:thunderbird-debuginfo-0:3.1.7-3.el6_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla miscellaneous memory safety hazards (MFSA 2010-74)"
    }
  ]
}

cve-2010-3776

Vulnerability from cvelistv5

Published

2010-12-10 18:00

Modified

2024-08-07 03:18

Severity ?

Summary

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

▼	URL	Tags
	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html	vendor-advisory, x_refsource_SUSE
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html	vendor-advisory, x_refsource_FEDORA
	http://www.mozilla.org/security/announce/2010/mfsa2010-74.html	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:258	vendor-advisory, x_refsource_MANDRIVA
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:251	vendor-advisory, x_refsource_MANDRIVA
	http://support.avaya.com/css/P8/documents/100124650	x_refsource_CONFIRM
	https://bugzilla.mozilla.org/show_bug.cgi?id=601699	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2010-0968.html	vendor-advisory, x_refsource_REDHAT
	http://www.redhat.com/support/errata/RHSA-2010-0966.html	vendor-advisory, x_refsource_REDHAT
	http://www.ubuntu.com/usn/USN-1019-1	vendor-advisory, x_refsource_UBUNTU
	http://www.redhat.com/support/errata/RHSA-2010-0969.html	vendor-advisory, x_refsource_REDHAT
	https://bugzilla.mozilla.org/show_bug.cgi?id=604843	x_refsource_CONFIRM
	http://secunia.com/advisories/42818	third-party-advisory, x_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12389	vdb-entry, signature, x_refsource_OVAL
	http://www.securitytracker.com/id?1024846	vdb-entry, x_refsource_SECTRACK
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html	vendor-advisory, x_refsource_FEDORA
	http://www.debian.org/security/2010/dsa-2132	vendor-advisory, x_refsource_DEBIAN
	http://www.securitytracker.com/id?1024848	vdb-entry, x_refsource_SECTRACK
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html	vendor-advisory, x_refsource_FEDORA
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html	vendor-advisory, x_refsource_FEDORA
	http://www.vupen.com/english/advisories/2011/0030	vdb-entry, x_refsource_VUPEN
	http://www.redhat.com/support/errata/RHSA-2010-0967.html	vendor-advisory, x_refsource_REDHAT
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html	vendor-advisory, x_refsource_FEDORA
	https://bugzilla.mozilla.org/show_bug.cgi?id=569162	x_refsource_CONFIRM
	https://bugzilla.mozilla.org/show_bug.cgi?id=599166	x_refsource_CONFIRM
	https://bugzilla.mozilla.org/show_bug.cgi?id=605307	x_refsource_CONFIRM
	https://bugzilla.mozilla.org/show_bug.cgi?id=468563	x_refsource_CONFIRM
	http://secunia.com/advisories/42716	third-party-advisory, x_refsource_SECUNIA
	http://www.ubuntu.com/usn/USN-1020-1	vendor-advisory, x_refsource_UBUNTU
	http://www.securityfocus.com/bid/45347	vdb-entry, x_refsource_BID
	https://bugzilla.mozilla.org/show_bug.cgi?id=571995	x_refsource_CONFIRM
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html	vendor-advisory, x_refsource_FEDORA

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T03:18:53.338Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SA:2011:003",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
          },
          {
            "name": "FEDORA-2010-18775",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
          },
          {
            "name": "MDVSA-2010:258",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
          },
          {
            "name": "MDVSA-2010:251",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/css/P8/documents/100124650"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=601699"
          },
          {
            "name": "RHSA-2010:0968",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0968.html"
          },
          {
            "name": "RHSA-2010:0966",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
          },
          {
            "name": "USN-1019-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1019-1"
          },
          {
            "name": "RHSA-2010:0969",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=604843"
          },
          {
            "name": "42818",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42818"
          },
          {
            "name": "oval:org.mitre.oval:def:12389",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12389"
          },
          {
            "name": "1024846",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024846"
          },
          {
            "name": "FEDORA-2010-18778",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
          },
          {
            "name": "DSA-2132",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2010/dsa-2132"
          },
          {
            "name": "1024848",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024848"
          },
          {
            "name": "FEDORA-2010-18920",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
          },
          {
            "name": "FEDORA-2010-18777",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
          },
          {
            "name": "ADV-2011-0030",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0030"
          },
          {
            "name": "RHSA-2010:0967",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0967.html"
          },
          {
            "name": "FEDORA-2010-18890",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=569162"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599166"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=605307"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=468563"
          },
          {
            "name": "42716",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42716"
          },
          {
            "name": "USN-1020-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1020-1"
          },
          {
            "name": "45347",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/45347"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=571995"
          },
          {
            "name": "FEDORA-2010-18773",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-12-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-18T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "SUSE-SA:2011:003",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
        },
        {
          "name": "FEDORA-2010-18775",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
        },
        {
          "name": "MDVSA-2010:258",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
        },
        {
          "name": "MDVSA-2010:251",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/css/P8/documents/100124650"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=601699"
        },
        {
          "name": "RHSA-2010:0968",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0968.html"
        },
        {
          "name": "RHSA-2010:0966",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
        },
        {
          "name": "USN-1019-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1019-1"
        },
        {
          "name": "RHSA-2010:0969",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=604843"
        },
        {
          "name": "42818",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42818"
        },
        {
          "name": "oval:org.mitre.oval:def:12389",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12389"
        },
        {
          "name": "1024846",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024846"
        },
        {
          "name": "FEDORA-2010-18778",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
        },
        {
          "name": "DSA-2132",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2010/dsa-2132"
        },
        {
          "name": "1024848",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024848"
        },
        {
          "name": "FEDORA-2010-18920",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
        },
        {
          "name": "FEDORA-2010-18777",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
        },
        {
          "name": "ADV-2011-0030",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0030"
        },
        {
          "name": "RHSA-2010:0967",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0967.html"
        },
        {
          "name": "FEDORA-2010-18890",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=569162"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599166"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=605307"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=468563"
        },
        {
          "name": "42716",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42716"
        },
        {
          "name": "USN-1020-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1020-1"
        },
        {
          "name": "45347",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/45347"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=571995"
        },
        {
          "name": "FEDORA-2010-18773",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2010-3776",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SA:2011:003",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
            },
            {
              "name": "FEDORA-2010-18775",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html",
              "refsource": "CONFIRM",
              "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
            },
            {
              "name": "MDVSA-2010:258",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
            },
            {
              "name": "MDVSA-2010:251",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
            },
            {
              "name": "http://support.avaya.com/css/P8/documents/100124650",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/css/P8/documents/100124650"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=601699",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=601699"
            },
            {
              "name": "RHSA-2010:0968",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0968.html"
            },
            {
              "name": "RHSA-2010:0966",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
            },
            {
              "name": "USN-1019-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1019-1"
            },
            {
              "name": "RHSA-2010:0969",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=604843",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=604843"
            },
            {
              "name": "42818",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42818"
            },
            {
              "name": "oval:org.mitre.oval:def:12389",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12389"
            },
            {
              "name": "1024846",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024846"
            },
            {
              "name": "FEDORA-2010-18778",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
            },
            {
              "name": "DSA-2132",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2010/dsa-2132"
            },
            {
              "name": "1024848",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024848"
            },
            {
              "name": "FEDORA-2010-18920",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
            },
            {
              "name": "FEDORA-2010-18777",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
            },
            {
              "name": "ADV-2011-0030",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0030"
            },
            {
              "name": "RHSA-2010:0967",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0967.html"
            },
            {
              "name": "FEDORA-2010-18890",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=569162",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=569162"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=599166",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599166"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=605307",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=605307"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=468563",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=468563"
            },
            {
              "name": "42716",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42716"
            },
            {
              "name": "USN-1020-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1020-1"
            },
            {
              "name": "45347",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/45347"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=571995",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=571995"
            },
            {
              "name": "FEDORA-2010-18773",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2010-3776",
    "datePublished": "2010-12-10T18:00:00",
    "dateReserved": "2010-10-05T00:00:00",
    "dateUpdated": "2024-08-07T03:18:53.338Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2010-3777

Vulnerability from cvelistv5

Published

2010-12-10 18:00

Modified

2024-08-07 03:18

Severity ?

Summary

Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and Thunderbird 3.1.x before 3.1.7 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

▼	URL	Tags
	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html	vendor-advisory, x_refsource_SUSE
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html	vendor-advisory, x_refsource_FEDORA
	http://www.mozilla.org/security/announce/2010/mfsa2010-74.html	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:258	vendor-advisory, x_refsource_MANDRIVA
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:251	vendor-advisory, x_refsource_MANDRIVA
	http://support.avaya.com/css/P8/documents/100124650	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2010-0966.html	vendor-advisory, x_refsource_REDHAT
	http://www.ubuntu.com/usn/USN-1019-1	vendor-advisory, x_refsource_UBUNTU
	http://www.redhat.com/support/errata/RHSA-2010-0969.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/42818	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id?1024846	vdb-entry, x_refsource_SECTRACK
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12468	vdb-entry, signature, x_refsource_OVAL
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html	vendor-advisory, x_refsource_FEDORA
	http://www.securitytracker.com/id?1024848	vdb-entry, x_refsource_SECTRACK
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html	vendor-advisory, x_refsource_FEDORA
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html	vendor-advisory, x_refsource_FEDORA
	http://www.vupen.com/english/advisories/2011/0030	vdb-entry, x_refsource_VUPEN
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html	vendor-advisory, x_refsource_FEDORA
	https://bugzilla.mozilla.org/show_bug.cgi?id=599607	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/45348	vdb-entry, x_refsource_BID
	http://secunia.com/advisories/42716	third-party-advisory, x_refsource_SECUNIA
	http://www.ubuntu.com/usn/USN-1020-1	vendor-advisory, x_refsource_UBUNTU
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html	vendor-advisory, x_refsource_FEDORA

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T03:18:53.374Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SA:2011:003",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
          },
          {
            "name": "FEDORA-2010-18775",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
          },
          {
            "name": "MDVSA-2010:258",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
          },
          {
            "name": "MDVSA-2010:251",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/css/P8/documents/100124650"
          },
          {
            "name": "RHSA-2010:0966",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
          },
          {
            "name": "USN-1019-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1019-1"
          },
          {
            "name": "RHSA-2010:0969",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
          },
          {
            "name": "42818",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42818"
          },
          {
            "name": "1024846",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024846"
          },
          {
            "name": "oval:org.mitre.oval:def:12468",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12468"
          },
          {
            "name": "FEDORA-2010-18778",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
          },
          {
            "name": "1024848",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024848"
          },
          {
            "name": "FEDORA-2010-18920",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
          },
          {
            "name": "FEDORA-2010-18777",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
          },
          {
            "name": "ADV-2011-0030",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0030"
          },
          {
            "name": "FEDORA-2010-18890",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599607"
          },
          {
            "name": "45348",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/45348"
          },
          {
            "name": "42716",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42716"
          },
          {
            "name": "USN-1020-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1020-1"
          },
          {
            "name": "FEDORA-2010-18773",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-12-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and Thunderbird 3.1.x before 3.1.7 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-18T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "SUSE-SA:2011:003",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
        },
        {
          "name": "FEDORA-2010-18775",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
        },
        {
          "name": "MDVSA-2010:258",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
        },
        {
          "name": "MDVSA-2010:251",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/css/P8/documents/100124650"
        },
        {
          "name": "RHSA-2010:0966",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
        },
        {
          "name": "USN-1019-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1019-1"
        },
        {
          "name": "RHSA-2010:0969",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
        },
        {
          "name": "42818",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42818"
        },
        {
          "name": "1024846",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024846"
        },
        {
          "name": "oval:org.mitre.oval:def:12468",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12468"
        },
        {
          "name": "FEDORA-2010-18778",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
        },
        {
          "name": "1024848",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024848"
        },
        {
          "name": "FEDORA-2010-18920",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
        },
        {
          "name": "FEDORA-2010-18777",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
        },
        {
          "name": "ADV-2011-0030",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0030"
        },
        {
          "name": "FEDORA-2010-18890",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599607"
        },
        {
          "name": "45348",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/45348"
        },
        {
          "name": "42716",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42716"
        },
        {
          "name": "USN-1020-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1020-1"
        },
        {
          "name": "FEDORA-2010-18773",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2010-3777",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and Thunderbird 3.1.x before 3.1.7 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SA:2011:003",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
            },
            {
              "name": "FEDORA-2010-18775",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html",
              "refsource": "CONFIRM",
              "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-74.html"
            },
            {
              "name": "MDVSA-2010:258",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
            },
            {
              "name": "MDVSA-2010:251",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
            },
            {
              "name": "http://support.avaya.com/css/P8/documents/100124650",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/css/P8/documents/100124650"
            },
            {
              "name": "RHSA-2010:0966",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
            },
            {
              "name": "USN-1019-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1019-1"
            },
            {
              "name": "RHSA-2010:0969",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
            },
            {
              "name": "42818",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42818"
            },
            {
              "name": "1024846",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024846"
            },
            {
              "name": "oval:org.mitre.oval:def:12468",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12468"
            },
            {
              "name": "FEDORA-2010-18778",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
            },
            {
              "name": "1024848",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024848"
            },
            {
              "name": "FEDORA-2010-18920",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
            },
            {
              "name": "FEDORA-2010-18777",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
            },
            {
              "name": "ADV-2011-0030",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0030"
            },
            {
              "name": "FEDORA-2010-18890",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=599607",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=599607"
            },
            {
              "name": "45348",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/45348"
            },
            {
              "name": "42716",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42716"
            },
            {
              "name": "USN-1020-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1020-1"
            },
            {
              "name": "FEDORA-2010-18773",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2010-3777",
    "datePublished": "2010-12-10T18:00:00",
    "dateReserved": "2010-10-05T00:00:00",
    "dateUpdated": "2024-08-07T03:18:53.374Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2010-3768

Vulnerability from cvelistv5

Published

2010-12-10 18:00

Modified

2024-08-07 03:18

Severity ?

Summary

Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system's font implementation, which allows remote attackers to execute arbitrary code via vectors related to @font-face Cascading Style Sheets (CSS) rules.

References

▼	URL	Tags
	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html	vendor-advisory, x_refsource_SUSE
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html	vendor-advisory, x_refsource_FEDORA
	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12533	vdb-entry, signature, x_refsource_OVAL
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:258	vendor-advisory, x_refsource_MANDRIVA
	http://www.mandriva.com/security/advisories?name=MDVSA-2010:251	vendor-advisory, x_refsource_MANDRIVA
	http://support.avaya.com/css/P8/documents/100124650	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2010-0966.html	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/45352	vdb-entry, x_refsource_BID
	http://www.ubuntu.com/usn/USN-1019-1	vendor-advisory, x_refsource_UBUNTU
	https://bugzilla.redhat.com/show_bug.cgi?id=660420	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2010-0969.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/42818	third-party-advisory, x_refsource_SECUNIA
	http://www.securitytracker.com/id?1024846	vdb-entry, x_refsource_SECTRACK
	http://www.mozilla.org/security/announce/2010/mfsa2010-78.html	x_refsource_CONFIRM
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html	vendor-advisory, x_refsource_FEDORA
	https://bugzilla.mozilla.org/show_bug.cgi?id=527276	x_refsource_CONFIRM
	http://www.securitytracker.com/id?1024848	vdb-entry, x_refsource_SECTRACK
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html	vendor-advisory, x_refsource_FEDORA
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html	vendor-advisory, x_refsource_FEDORA
	http://www.vupen.com/english/advisories/2011/0030	vdb-entry, x_refsource_VUPEN
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html	vendor-advisory, x_refsource_FEDORA
	http://secunia.com/advisories/42716	third-party-advisory, x_refsource_SECUNIA
	http://www.ubuntu.com/usn/USN-1020-1	vendor-advisory, x_refsource_UBUNTU
	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html	vendor-advisory, x_refsource_FEDORA

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T03:18:53.047Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SA:2011:003",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
          },
          {
            "name": "FEDORA-2010-18775",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
          },
          {
            "name": "oval:org.mitre.oval:def:12533",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12533"
          },
          {
            "name": "MDVSA-2010:258",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
          },
          {
            "name": "MDVSA-2010:251",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/css/P8/documents/100124650"
          },
          {
            "name": "RHSA-2010:0966",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
          },
          {
            "name": "45352",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/45352"
          },
          {
            "name": "USN-1019-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1019-1"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660420"
          },
          {
            "name": "RHSA-2010:0969",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
          },
          {
            "name": "42818",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42818"
          },
          {
            "name": "1024846",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024846"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-78.html"
          },
          {
            "name": "FEDORA-2010-18778",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=527276"
          },
          {
            "name": "1024848",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1024848"
          },
          {
            "name": "FEDORA-2010-18920",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
          },
          {
            "name": "FEDORA-2010-18777",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
          },
          {
            "name": "ADV-2011-0030",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0030"
          },
          {
            "name": "FEDORA-2010-18890",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
          },
          {
            "name": "42716",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/42716"
          },
          {
            "name": "USN-1020-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1020-1"
          },
          {
            "name": "FEDORA-2010-18773",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-12-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system\u0027s font implementation, which allows remote attackers to execute arbitrary code via vectors related to @font-face Cascading Style Sheets (CSS) rules."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-18T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "SUSE-SA:2011:003",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
        },
        {
          "name": "FEDORA-2010-18775",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
        },
        {
          "name": "oval:org.mitre.oval:def:12533",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12533"
        },
        {
          "name": "MDVSA-2010:258",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
        },
        {
          "name": "MDVSA-2010:251",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/css/P8/documents/100124650"
        },
        {
          "name": "RHSA-2010:0966",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
        },
        {
          "name": "45352",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/45352"
        },
        {
          "name": "USN-1019-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1019-1"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660420"
        },
        {
          "name": "RHSA-2010:0969",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
        },
        {
          "name": "42818",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42818"
        },
        {
          "name": "1024846",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024846"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-78.html"
        },
        {
          "name": "FEDORA-2010-18778",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=527276"
        },
        {
          "name": "1024848",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1024848"
        },
        {
          "name": "FEDORA-2010-18920",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
        },
        {
          "name": "FEDORA-2010-18777",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
        },
        {
          "name": "ADV-2011-0030",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0030"
        },
        {
          "name": "FEDORA-2010-18890",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
        },
        {
          "name": "42716",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/42716"
        },
        {
          "name": "USN-1020-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1020-1"
        },
        {
          "name": "FEDORA-2010-18773",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2010-3768",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system\u0027s font implementation, which allows remote attackers to execute arbitrary code via vectors related to @font-face Cascading Style Sheets (CSS) rules."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SA:2011:003",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html"
            },
            {
              "name": "FEDORA-2010-18775",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html"
            },
            {
              "name": "oval:org.mitre.oval:def:12533",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12533"
            },
            {
              "name": "MDVSA-2010:258",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:258"
            },
            {
              "name": "MDVSA-2010:251",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:251"
            },
            {
              "name": "http://support.avaya.com/css/P8/documents/100124650",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/css/P8/documents/100124650"
            },
            {
              "name": "RHSA-2010:0966",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0966.html"
            },
            {
              "name": "45352",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/45352"
            },
            {
              "name": "USN-1019-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1019-1"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=660420",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=660420"
            },
            {
              "name": "RHSA-2010:0969",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2010-0969.html"
            },
            {
              "name": "42818",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42818"
            },
            {
              "name": "1024846",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024846"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2010/mfsa2010-78.html",
              "refsource": "CONFIRM",
              "url": "http://www.mozilla.org/security/announce/2010/mfsa2010-78.html"
            },
            {
              "name": "FEDORA-2010-18778",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=527276",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=527276"
            },
            {
              "name": "1024848",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1024848"
            },
            {
              "name": "FEDORA-2010-18920",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html"
            },
            {
              "name": "FEDORA-2010-18777",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html"
            },
            {
              "name": "ADV-2011-0030",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0030"
            },
            {
              "name": "FEDORA-2010-18890",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html"
            },
            {
              "name": "42716",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/42716"
            },
            {
              "name": "USN-1020-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1020-1"
            },
            {
              "name": "FEDORA-2010-18773",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2010-3768",
    "datePublished": "2010-12-10T18:00:00",
    "dateReserved": "2010-10-05T00:00:00",
    "dateUpdated": "2024-08-07T03:18:53.047Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Action not permitted

rhsa-2010_0969

Vulnerability from csaf_redhat

cve-2010-3776

Vulnerability from cvelistv5

cve-2010-3777

Vulnerability from cvelistv5

cve-2010-3768

Vulnerability from cvelistv5

Tags