CVE-2011-3666

Impact:
Critical
Public Date:
2011-12-20
Bugzilla:
770676: CVE-2011-3660 Mozilla: Multiple security flaws fixed in v3.6.25 (Mac) and v9

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 3.6.25 and Thunderbird before 3.1.17 on Mac OS X do not consider .jar files to be executable files, which allows user-assisted remote attackers to bypass intended access restrictions via a crafted file. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-2372 on Mac OS X.

Find out more about CVE-2011-3666 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the version of firefox and thunderbird packages as shipped with Red Hat Enterprise Linux 4, 5 and 6. This issue did not affect the version of seamonkey package as shipped with Red Hat Enterprise Linux 4.

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.