CyberSec.Space Logo
返回 CVE 浏览器

CVE-2011-0057

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1810%
EPSS Percentile26.44th
Published2011年3月2日
Last Modified2026年4月29日

Vulnerability Description

Use-after-free vulnerability in the Web Workers implementation in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to execute arbitrary code via vectors related to a JavaScript Worker and garbage collection.

Affected Platforms (CPE)

📦
Mozilla

Firefox

= 3.6
📦
Mozilla

Firefox

= 3.6.2
📦
Mozilla

Firefox

= 3.6.3
📦
Mozilla

Firefox

= 3.6.4
📦
Mozilla

Firefox

= 3.6.6
📦
Mozilla

Firefox

= 3.6.7
📦
Mozilla

Firefox

= 3.6.8
📦
Mozilla

Firefox

= 3.6.9
📦
Mozilla

Firefox

= 3.6.10
📦
Mozilla

Firefox

= 3.6.11
📦
Mozilla

Firefox

= 3.6.12
📦
Mozilla

Firefox

= 3.6.13
📦
Mozilla

Seamonkey

<= 2.0.11
📦
Mozilla

Seamonkey

= 1.0
📦
Mozilla

Seamonkey

= 1.0
📦
Mozilla

Seamonkey

= 1.0
📦
Mozilla

Seamonkey

= 1.0.1
📦
Mozilla

Seamonkey

= 1.0.2
📦
Mozilla

Seamonkey

= 1.0.3
📦
Mozilla

Seamonkey

= 1.0.4
📦
Mozilla

Seamonkey

= 1.0.5
📦
Mozilla

Seamonkey

= 1.0.6
📦
Mozilla

Seamonkey

= 1.0.7
📦
Mozilla

Seamonkey

= 1.0.8
📦
Mozilla

Seamonkey

= 1.0.9
📦
Mozilla

Seamonkey

= 1.1
📦
Mozilla

Seamonkey

= 1.1
📦
Mozilla

Seamonkey

= 1.1
📦
Mozilla

Seamonkey

= 1.1.1
📦
Mozilla

Seamonkey

= 1.1.2
📦
Mozilla

Seamonkey

= 1.1.3
📦
Mozilla

Seamonkey

= 1.1.4
📦
Mozilla

Seamonkey

= 1.1.5
📦
Mozilla

Seamonkey

= 1.1.6
📦
Mozilla

Seamonkey

= 1.1.7
📦
Mozilla

Seamonkey

= 1.1.8
📦
Mozilla

Seamonkey

= 1.1.9
📦
Mozilla

Seamonkey

= 1.1.10
📦
Mozilla

Seamonkey

= 1.1.11
📦
Mozilla

Seamonkey

= 1.1.12
📦
Mozilla

Seamonkey

= 1.1.13
📦
Mozilla

Seamonkey

= 1.1.14
📦
Mozilla

Seamonkey

= 1.1.15
📦
Mozilla

Seamonkey

= 1.1.16
📦
Mozilla

Seamonkey

= 1.1.17
📦
Mozilla

Seamonkey

= 1.1.18
📦
Mozilla

Seamonkey

= 1.1.19
📦
Mozilla

Seamonkey

= 1.5.0.8
📦
Mozilla

Seamonkey

= 1.5.0.9
📦
Mozilla

Seamonkey

= 1.5.0.10
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0
📦
Mozilla

Seamonkey

= 2.0.1
📦
Mozilla

Seamonkey

= 2.0.2
📦
Mozilla

Seamonkey

= 2.0.3
📦
Mozilla

Seamonkey

= 2.0.4
📦
Mozilla

Seamonkey

= 2.0.5
📦
Mozilla

Seamonkey

= 2.0.6
📦
Mozilla

Seamonkey

= 2.0.7
📦
Mozilla

Seamonkey

= 2.0.8
📦
Mozilla

Seamonkey

= 2.0.9
📦
Mozilla

Seamonkey

= 2.0.10
📦
Mozilla

Firefox

<= 3.5.16
📦
Mozilla

Firefox

= 1.0
📦
Mozilla

Firefox

= 1.0
📦
Mozilla

Firefox

= 1.0.1
📦
Mozilla

Firefox

= 1.0.2
📦
Mozilla

Firefox

= 1.0.3
📦
Mozilla

Firefox

= 1.0.4
📦
Mozilla

Firefox

= 1.0.5
📦
Mozilla

Firefox

= 1.0.6
📦
Mozilla

Firefox

= 1.0.7
📦
Mozilla

Firefox

= 1.0.8
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5.0.1
📦
Mozilla

Firefox

= 1.5.0.2
📦
Mozilla

Firefox

= 1.5.0.3
📦
Mozilla

Firefox

= 1.5.0.4
📦
Mozilla

Firefox

= 1.5.0.5
📦
Mozilla

Firefox

= 1.5.0.6
📦
Mozilla

Firefox

= 1.5.0.7
📦
Mozilla

Firefox

= 1.5.0.8
📦
Mozilla

Firefox

= 1.5.0.9
📦
Mozilla

Firefox

= 1.5.0.10
📦
Mozilla

Firefox

= 1.5.0.11
📦
Mozilla

Firefox

= 1.5.0.12
📦
Mozilla

Firefox

= 1.5.1
📦
Mozilla

Firefox

= 1.5.2
📦
Mozilla

Firefox

= 1.5.3
📦
Mozilla

Firefox

= 1.5.4
📦
Mozilla

Firefox

= 1.5.5
📦
Mozilla

Firefox

= 1.5.6
📦
Mozilla

Firefox

= 1.5.7
📦
Mozilla

Firefox

= 1.5.8
📦
Mozilla

Firefox

= 2.0
📦
Mozilla

Firefox

= 2.0.0.1
📦
Mozilla

Firefox

= 2.0.0.2
📦
Mozilla

Firefox

= 2.0.0.3
📦
Mozilla

Firefox

= 2.0.0.4
📦
Mozilla

Firefox

= 2.0.0.5
📦
Mozilla

Firefox

= 2.0.0.6
📦
Mozilla

Firefox

= 2.0.0.7
📦
Mozilla

Firefox

= 2.0.0.8
📦
Mozilla

Firefox

= 2.0.0.9
📦
Mozilla

Firefox

= 2.0.0.10
📦
Mozilla

Firefox

= 2.0.0.11
📦
Mozilla

Firefox

= 2.0.0.12
📦
Mozilla

Firefox

= 2.0.0.13
📦
Mozilla

Firefox

= 2.0.0.14
📦
Mozilla

Firefox

= 2.0.0.15
📦
Mozilla

Firefox

= 2.0.0.16
📦
Mozilla

Firefox

= 2.0.0.17
📦
Mozilla

Firefox

= 2.0.0.18
📦
Mozilla

Firefox

= 2.0.0.19
📦
Mozilla

Firefox

= 2.0.0.20
📦
Mozilla

Firefox

= 3.0
📦
Mozilla

Firefox

= 3.0.1
📦
Mozilla

Firefox

= 3.0.2
📦
Mozilla

Firefox

= 3.0.3
📦
Mozilla

Firefox

= 3.0.4
📦
Mozilla

Firefox

= 3.0.5
📦
Mozilla

Firefox

= 3.0.6
📦
Mozilla

Firefox

= 3.0.7
📦
Mozilla

Firefox

= 3.0.8
📦
Mozilla

Firefox

= 3.0.9
📦
Mozilla

Firefox

= 3.0.10
📦
Mozilla

Firefox

= 3.0.11
📦
Mozilla

Firefox

= 3.0.12
📦
Mozilla

Firefox

= 3.0.13
📦
Mozilla

Firefox

= 3.0.14
📦
Mozilla

Firefox

= 3.0.15
📦
Mozilla

Firefox

= 3.0.16
📦
Mozilla

Firefox

= 3.0.17
📦
Mozilla

Firefox

= 3.5
📦
Mozilla

Firefox

= 3.5.1
📦
Mozilla

Firefox

= 3.5.2
📦
Mozilla

Firefox

= 3.5.3
📦
Mozilla

Firefox

= 3.5.4
📦
Mozilla

Firefox

= 3.5.5
📦
Mozilla

Firefox

= 3.5.6
📦
Mozilla

Firefox

= 3.5.7
📦
Mozilla

Firefox

= 3.5.8
📦
Mozilla

Firefox

= 3.5.9
📦
Mozilla

Firefox

= 3.5.10
📦
Mozilla

Firefox

= 3.5.11
📦
Mozilla

Firefox

= 3.5.12
📦
Mozilla

Firefox

= 3.5.13
📦
Mozilla

Firefox

= 3.5.14
📦
Mozilla

Firefox

= 3.5.15

References & Advisories

🔗 http://downloads.avaya.com/css/P8/documents/100133195
🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2011:041
🔗 http://www.mozilla.org/security/announce/2011/mfsa2011-06.html
🔗 http://www.securityfocus.com/bid/46663
🔗 https://bugzilla.mozilla.org/show_bug.cgi?id=626631
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14200
🔗 http://downloads.avaya.com/css/P8/documents/100133195
🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2011:041

相关漏洞威胁

CVE-2019-1170810.0

Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the no...

CVE-2019-2513610.0

A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and ...

CVE-2018-1850510.0

An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication betwee...

CVE-2020-1238810.0

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this iss...

CVE-2011-0057 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space