CVE-2011-3665 : Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a

Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an Ogg VIDEO element that is not properly handled after scaling.

Published 2011-12-21 04:02:01

Updated 2017-09-19 01:34:02

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2011-3665

Probability of exploitation activity in the next 30 days: 5.07%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2011-3665

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2011-3665

CWE-399

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-3665

https://exchange.xforce.ibmcloud.com/vulnerabilities/71913

Mozilla Firefox, Thunderbird, and SeaMonkey OGG denial of service CVE-2011-3665 Vulnerability Report
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00009.html

[security-announce] openSUSE-SU-2012:0039-1: important: seamonkey

CVEs referencing this url
http://www.securitytracker.com/id?1026446

Mozilla Seamonkey Multiple Flaws Permit Remote Code Execution and Keystroke Detection - SecurityTracker

CVEs referencing this url
http://www.mozilla.org/security/announce/2011/mfsa2011-58.html

Crash scaling &lt;video&gt; to extreme sizes — Mozilla
Vendor Advisory
http://www.securitytracker.com/id?1026445

Mozilla Firefox Multiple Flaws Permit Remote Code Execution and Keystroke Detection - SecurityTracker

CVEs referencing this url
http://www.securitytracker.com/id?1026447

Mozilla Thunderbird Multiple Flaws Permit Remote Code Execution and Keystroke Detection - SecurityTracker

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14640

Repository / Oval Repository
https://bugzilla.mozilla.org/show_bug.cgi?id=701259

701259 - (CVE-2011-3665) crashes on videos when scaling to large width/height
http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00001.html

[security-announce] openSUSE-SU-2012:0007-1: important: seamonkey

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDVSA-2011:192

mandriva.com

CVEs referencing this url

Products affected by CVE-2011-3665

Mozilla » Firefox » Version: 4.0 Update Beta5
cpe:2.3:a:mozilla:firefox:4.0:beta5:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta3
cpe:2.3:a:mozilla:firefox:4.0:beta3:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta4
cpe:2.3:a:mozilla:firefox:4.0:beta4:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta2
cpe:2.3:a:mozilla:firefox:4.0:beta2:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta7
cpe:2.3:a:mozilla:firefox:4.0:beta7:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta8
cpe:2.3:a:mozilla:firefox:4.0:beta8:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta9
cpe:2.3:a:mozilla:firefox:4.0:beta9:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta1
cpe:2.3:a:mozilla:firefox:4.0:beta1:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta10
cpe:2.3:a:mozilla:firefox:4.0:beta10:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta11
cpe:2.3:a:mozilla:firefox:4.0:beta11:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta6
cpe:2.3:a:mozilla:firefox:4.0:beta6:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0 Update Beta12
cpe:2.3:a:mozilla:firefox:4.0:beta12:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0
cpe:2.3:a:mozilla:firefox:4.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 4.0.1
cpe:2.3:a:mozilla:firefox:4.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 5.0
cpe:2.3:a:mozilla:firefox:5.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 6.0
cpe:2.3:a:mozilla:firefox:6.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 6.0.1
cpe:2.3:a:mozilla:firefox:6.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 5.0.1
cpe:2.3:a:mozilla:firefox:5.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 6.0.2
cpe:2.3:a:mozilla:firefox:6.0.2:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 7.0
cpe:2.3:a:mozilla:firefox:7.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 8.0
cpe:2.3:a:mozilla:firefox:8.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox » Version: 7.0.1
cpe:2.3:a:mozilla:firefox:7.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 5.0
cpe:2.3:a:mozilla:thunderbird:5.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 6.0.2
cpe:2.3:a:mozilla:thunderbird:6.0.2:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 6.0.1
cpe:2.3:a:mozilla:thunderbird:6.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 6.0
cpe:2.3:a:mozilla:thunderbird:6.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 7.0
cpe:2.3:a:mozilla:thunderbird:7.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 8.0
cpe:2.3:a:mozilla:thunderbird:8.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Thunderbird » Version: 7.0.1
cpe:2.3:a:mozilla:thunderbird:7.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey
Versions up to, including, (<=) 2.5
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.6
cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.5
cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0
cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update RC2
cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.4
cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.8
cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.7
cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.16
cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.1
cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.10
cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0 Update Beta
cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.4
cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.9
cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.5.0.8
cpe:2.3:a:mozilla:seamonkey:1.5.0.8:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.3
cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.2
cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.3
cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.2
cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.2
cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.1
cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update Alpha 2
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update Alpha 1
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0a1 PRE Edition
cpe:2.3:a:mozilla:seamonkey:2.0a1:*:pre:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.1 Update Alpha1
cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.14
cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.15
cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.5
cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.19
cpe:2.3:a:mozilla:seamonkey:1.1.19:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.5.0.9
cpe:2.3:a:mozilla:seamonkey:1.5.0.9:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.9
cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.13
cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1
cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.11
cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.14
cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.3
cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update Beta 1
cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update Alpha 3
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.10
cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.17
cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1 Update Alpha
cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0 Update Alpha
cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.7
cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.6
cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.6
cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.5.0.10
cpe:2.3:a:mozilla:seamonkey:1.5.0.10:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1 Update Beta
cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.5
cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.4
cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.12
cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.13
cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update RC1
cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0 Update Beta 2
cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.1 Update Alpha2
cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0.9
cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.11
cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.12
cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.18
cpe:2.3:a:mozilla:seamonkey:1.1.18:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.8
cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.8
cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.7
cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.1
cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0
cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0 Alpha Edition
cpe:2.3:a:mozilla:seamonkey:1.0:*:alpha:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0 DEV Edition
cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0.99
cpe:2.3:a:mozilla:seamonkey:1.0.99:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.0 Beta Edition
cpe:2.3:a:mozilla:seamonkey:1.0:*:beta:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 1.1.5 Update 1.1.10
cpe:2.3:a:mozilla:seamonkey:1.1.5:1.1.10:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.0a1pre
cpe:2.3:a:mozilla:seamonkey:2.0a1pre:*:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.1 Update Alpha3
cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:*
Matching versions
Mozilla » Seamonkey » Version: 2.3.3
cpe:2.3:a:mozilla:seamonkey:2.3.3:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2011-3665

Exploit prediction scoring system (EPSS) score for CVE-2011-3665

CVSS scores for CVE-2011-3665

CWE ids for CVE-2011-3665

References for CVE-2011-3665

Products affected by CVE-2011-3665