CVE-2011-3655

Publication date 9 November 2011

Last updated 24 July 2024

Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site.

Status

Show unmaintained releases

Package	Ubuntu Release	Status

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-1277-1
Firefox vulnerabilities
23 November 2011

USN-1282-1
Thunderbird vulnerabilities
28 November 2011

Other references

https://bugzilla.mozilla.org/show_bug.cgi?id=672182
https://www.cve.org/CVERecord?id=CVE-2011-3655