Multiple vulnerabilities in Firefox web browser

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2011-3062 Numeric Errors vulnerability 6.8 Firefox web browser
Solaris 11 11/11 SRU 9.5
Solaris 10 SPARC: 145080-11 X86: 145081-10
CVE-2012-0467 Denial of service (DoS) vulnerability 10.0
CVE-2012-0468 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability 10.0
CVE-2012-0469 Resource Management Errors vulnerability 10.0
CVE-2012-0470 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability 10.0
CVE-2012-0471 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability 4.3
CVE-2012-0473 Numeric Errors vulnerability 5.0
CVE-2012-0474 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability 4.3
CVE-2012-0477 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability 4.3
CVE-2012-0478 Permissions, Privileges, and Access Controls vulnerability 9.3
CVE-2012-0479 Identity spoofing vulnerability 4.3

This notification describes vulnerabilities fixed in third-party components that are included in Sun's product distribution.
Information about vulnerabilities affecting Oracle Sun products can be found on Oracle Critical Patch Updates and Security Alerts page.

Comments:

Post a Comment:
Comments are closed for this entry.
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today