CVE-2011-3664 Information

Description

Mozilla Firefox before 9.0 Thunderbird before 9.0 and SeaMonkey before 2.6 on Mac OS X do not properly handle certain DOM frame deletions by plugins which allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) or possibly have unspecified other impact via a crafted web site.

Reference

http://secunia.com/advisories/47302 http://secunia.com/advisories/47334 http://www.mozilla.org/security/announce/2011/mfsa2011-57.html http://www.securitytracker.com/id?1026445 http://www.securitytracker.com/id?1026446 http://www.securitytracker.com/id?1026447 https://bugzilla.mozilla.org/show_bug.cgi?id=649079 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A14574