Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
BID:50591
Info
Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
| Bugtraq ID: | 50591 |
| Class: | Design Error |
| CVE: |
CVE-2011-3649 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 08 2011 12:00AM |
| Updated: | Dec 03 2011 05:47PM |
| Credit: | Bas Schouten |
| Vulnerable: |
SuSE SUSE Linux Enterprise Server for VMware 11 SP1 SuSE SUSE Linux Enterprise Server 11 SP1 SuSE SUSE Linux Enterprise Server 10 SP4 SuSE SUSE Linux Enterprise SDK 11 SP1 SuSE SUSE Linux Enterprise SDK 10 SP4 SuSE SUSE Linux Enterprise Desktop 11 SP1 SuSE SUSE Linux Enterprise Desktop 10 SP4 SuSE openSUSE 11.4 SuSE openSUSE 11.3 Mozilla Thunderbird 7.0 Mozilla Thunderbird 6 Mozilla Thunderbird 6 Mozilla Thunderbird 5 Mozilla Firefox 7 Mozilla Firefox 6 Mozilla Firefox 5.0 Mozilla Firefox 4.0.1 Mozilla Firefox 4.0 Beta1 Mozilla Firefox 4.0 Beta1 Mozilla Firefox 4.0 |
| Not Vulnerable: |
Mozilla Thunderbird 8.0 Mozilla Firefox 8.0 |
Discussion
Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
Mozilla Firefox and Thunderbird are prone to a remote information-disclosure vulnerability.
An attacker can exploit this issue to obtain sensitive information that may aid in further attacks.
Mozilla Firefox and Thunderbird are prone to a remote information-disclosure vulnerability.
An attacker can exploit this issue to obtain sensitive information that may aid in further attacks.
Exploit / POC
Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
Attackers can exploit this issue by enticing an unsuspecting user into visiting a specially crafted webpage.
Attackers can exploit this issue by enticing an unsuspecting user into visiting a specially crafted webpage.
Solution / Fix
Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
Mozilla Firefox and Thunderbird CVE-2011-3649 Information Disclosure Vulnerability
References:
References:
- Mozilla Firefox Homepage Mozilla Web Page (Mozill)
- Thunderbird Homepage (Mozilla)
- Mozilla Foundation Security Advisory 2011-50 (nasalislarvatus3000 )