NVD

Id
7188  
Name
CVE-2011-0051  
Description
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2011-03-02  
Modified Date
2017-01-06  
Seq
2011-0051  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
40317 7188 CVE-2011-0051 http://downloads.avaya.com/css/P8/documents/100133195  View
40318 7188 CVE-2011-0051 oval:org.mitre.oval:def:14211  View
40319 7188 CVE-2011-0051 http://support.avaya.com/css/P8/documents/100128655  View
40320 7188 CVE-2011-0051 MDVSA-2011:041  View
40321 7188 CVE-2011-0051 http://www.mozilla.org/security/announce/2011/mfsa2011-02.html  View
40322 7188 CVE-2011-0051 RHSA-2011:0312  View
40323 7188 CVE-2011-0051 RHSA-2011:0313  View
40324 7188 CVE-2011-0051 https://bugzilla.mozilla.org/show_bug.cgi?id=616659  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
31048 JVNDB-2011-001287 Mozilla Firefox および SeaMonkey におけるダイアログの質問に対し応答を強制される脆弱性 Mozilla Firefox および SeaMonkey は、eval() 関数の再帰的呼び出しを適切に処理しないため、ダイアログの質問に対してユーザが応答を強制されてしまう脆弱性が存在します。 CVE-2011-0051 47958 CVE-2011-0051 7188 6.8 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001287.html 2011-03-01 2011-03-25 View