{"url":"http://public2.vulnerablecode.io/api/packages/312956?format=json","purl":"pkg:rpm/redhat/xulrunner@1.9.2.17-3?arch=el5_6","type":"rpm","namespace":"redhat","name":"xulrunner","version":"1.9.2.17-3","qualifiers":{"arch":"el5_6"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2785?format=json","vulnerability_id":"VCID-48rt-hx1w-p7ct","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0069.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0069.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0069","reference_id":"","reference_type":"","scores":[{"value":"0.04133","scoring_system":"epss","scoring_elements":"0.88824","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0069"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700642","reference_id":"700642","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700642"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0069","reference_id":"CVE-2011-0069","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0069"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1121-1/","reference_id":"USN-1121-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1121-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0069"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-48rt-hx1w-p7ct"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2865?format=json","vulnerability_id":"VCID-4hm6-cvca-q3dz","summary":"Security researcher regenrecht reported several\ndangling pointer vulnerabilities via TippingPoint's Zero Day\nInitiative.Firefox 4 was not affected by these issues.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0066.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0066.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0066","reference_id":"","reference_type":"","scores":[{"value":"0.05626","scoring_system":"epss","scoring_elements":"0.90474","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0066"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700657","reference_id":"700657","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700657"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0066","reference_id":"CVE-2011-0066","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0066"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13","reference_id":"mfsa2011-13","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0066"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4hm6-cvca-q3dz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2874?format=json","vulnerability_id":"VCID-4s1y-4wue-qkdj","summary":"Chris Evans of the Chrome Security Team reported\nthat the XSLT generate-id() function returned a string that revealed\na specific valid address of an object on the memory heap. It is possible\nthat in some cases this address would be valuable information that could\nbe used by an attacker while exploiting a different memory corruption\nbut, in order to make an exploit more reliable or work around mitigation\nfeatures in the browser or operating system.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1202.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1202.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1202","reference_id":"","reference_type":"","scores":[{"value":"0.00644","scoring_system":"epss","scoring_elements":"0.70993","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1202"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617413","reference_id":"617413","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617413"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=684386","reference_id":"684386","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=684386"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1202","reference_id":"CVE-2011-1202","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1202"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-18","reference_id":"mfsa2011-18","reference_type":"","scores":[{"value":"low","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-18"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:1265","reference_id":"RHSA-2012:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:1265"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1121-1/","reference_id":"USN-1121-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1121-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"},{"reference_url":"https://usn.ubuntu.com/1595-1/","reference_id":"USN-1595-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1595-1/"}],"fixed_packages":[],"aliases":["CVE-2011-1202"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4s1y-4wue-qkdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2792?format=json","vulnerability_id":"VCID-7brb-puuf-fya8","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0072.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0072.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0072","reference_id":"","reference_type":"","scores":[{"value":"0.04216","scoring_system":"epss","scoring_elements":"0.8893","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0072"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700622","reference_id":"700622","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700622"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0072","reference_id":"CVE-2011-0072","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0072"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0072"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7brb-puuf-fya8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2788?format=json","vulnerability_id":"VCID-9qs9-ys17-v3bg","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0074.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0074.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0074","reference_id":"","reference_type":"","scores":[{"value":"0.04216","scoring_system":"epss","scoring_elements":"0.8893","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0074"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700617","reference_id":"700617","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0074","reference_id":"CVE-2011-0074","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0074"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0074"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9qs9-ys17-v3bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2787?format=json","vulnerability_id":"VCID-bv7y-5uve-5ffk","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0080.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0080.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0080","reference_id":"","reference_type":"","scores":[{"value":"0.02514","scoring_system":"epss","scoring_elements":"0.8564","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0080"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700677","reference_id":"700677","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700677"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0080","reference_id":"CVE-2011-0080","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0080"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0080"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bv7y-5uve-5ffk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2789?format=json","vulnerability_id":"VCID-cfnb-jsaa-a3g2","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0075.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0075.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0075","reference_id":"","reference_type":"","scores":[{"value":"0.04133","scoring_system":"epss","scoring_elements":"0.88824","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0075"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700615","reference_id":"700615","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700615"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0075","reference_id":"CVE-2011-0075","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0075"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0075"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cfnb-jsaa-a3g2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2834?format=json","vulnerability_id":"VCID-ea8w-cmzd-hqan","summary":"Security researcher Soroush Dalili reported that\nthe resource: protocol could be exploited to allow directory traversal\non Windows and the potential loading of resources from non-permitted\nlocations. The impact would depend on whether interesting files existed\nin predictable locations in a useful format. For example, the existence\nor non-existence of particular images might indicate whether certain\nsoftware was installed.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0071.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0071.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0071","reference_id":"","reference_type":"","scores":[{"value":"0.01674","scoring_system":"epss","scoring_elements":"0.8245","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700635","reference_id":"700635","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700635"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0071","reference_id":"CVE-2011-0071","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0071"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-16","reference_id":"mfsa2011-16","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0071"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ea8w-cmzd-hqan"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2790?format=json","vulnerability_id":"VCID-hq8b-hhzz-zyag","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0077.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0077.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0077","reference_id":"","reference_type":"","scores":[{"value":"0.04216","scoring_system":"epss","scoring_elements":"0.8893","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0077"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700613","reference_id":"700613","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0077","reference_id":"CVE-2011-0077","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0077"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0077"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hq8b-hhzz-zyag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2791?format=json","vulnerability_id":"VCID-hx1c-5urc-q7ar","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0078.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0078.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0078","reference_id":"","reference_type":"","scores":[{"value":"0.04216","scoring_system":"epss","scoring_elements":"0.8893","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0078"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700603","reference_id":"700603","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700603"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0078","reference_id":"CVE-2011-0078","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0078"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0078"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hx1c-5urc-q7ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2786?format=json","vulnerability_id":"VCID-mmc8-9gbv-fbat","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0070.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0070.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0070","reference_id":"","reference_type":"","scores":[{"value":"0.04133","scoring_system":"epss","scoring_elements":"0.88824","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0070"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700640","reference_id":"700640","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700640"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0070","reference_id":"CVE-2011-0070","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0070"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1121-1/","reference_id":"USN-1121-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1121-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0070"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mmc8-9gbv-fbat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2866?format=json","vulnerability_id":"VCID-nd55-spy5-9qau","summary":"Security researcher regenrecht reported several\ndangling pointer vulnerabilities via TippingPoint's Zero Day\nInitiative.Firefox 4 was not affected by these issues.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0073.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0073.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0073","reference_id":"","reference_type":"","scores":[{"value":"0.81161","scoring_system":"epss","scoring_elements":"0.99184","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0073"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700619","reference_id":"700619","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700619"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0073","reference_id":"CVE-2011-0073","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0073"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17419.zip","reference_id":"CVE-2011-0073;OSVDB-72087","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17419.zip"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17520.rb","reference_id":"CVE-2011-0073;OSVDB-72087","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17520.rb"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-11-157/","reference_id":"CVE-2011-0073;OSVDB-72087","reference_type":"exploit","scores":[],"url":"http://www.zerodayinitiative.com/advisories/ZDI-11-157/"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13","reference_id":"mfsa2011-13","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0473","reference_id":"RHSA-2011:0473","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0473"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0474","reference_id":"RHSA-2011:0474","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0474"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0073"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nd55-spy5-9qau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2784?format=json","vulnerability_id":"VCID-qmh7-fvnc-tqhn","summary":"Mozilla developers identified and fixed several memory safety bugs\nin the browser engine used in Firefox and other Mozilla-based\nproducts. Some of these bugs showed evidence of memory corruption\nunder certain circumstances, and we presume that with enough effort at\nleast some of these could be exploited to run arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0081.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0081.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0081","reference_id":"","reference_type":"","scores":[{"value":"0.04704","scoring_system":"epss","scoring_elements":"0.89531","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0081"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700676","reference_id":"700676","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700676"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0081","reference_id":"CVE-2011-0081","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0081"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12","reference_id":"mfsa2011-12","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-12"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0475","reference_id":"RHSA-2011:0475","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0475"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1121-1/","reference_id":"USN-1121-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1121-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"}],"fixed_packages":[],"aliases":["CVE-2011-0081"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qmh7-fvnc-tqhn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2864?format=json","vulnerability_id":"VCID-s1nm-cdq2-nqec","summary":"Security researcher regenrecht reported several\ndangling pointer vulnerabilities via TippingPoint's Zero Day\nInitiative.Firefox 4 was not affected by these issues.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0065.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0065.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0065","reference_id":"","reference_type":"","scores":[{"value":"0.83259","scoring_system":"epss","scoring_elements":"0.99284","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0065"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700658","reference_id":"700658","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700658"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0065","reference_id":"CVE-2011-0065","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0065"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/osx/remote/18377.rb","reference_id":"CVE-2011-0065;OSVDB-72085","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/osx/remote/18377.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17612.rb","reference_id":"CVE-2011-0065;OSVDB-72085","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17612.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17650.rb","reference_id":"CVE-2011-0065;OSVDB-72085","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17650.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17672.html","reference_id":"CVE-2011-0065;OSVDB-72085","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/17672.html"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13","reference_id":"mfsa2011-13","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-13"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0065"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s1nm-cdq2-nqec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2842?format=json","vulnerability_id":"VCID-zxps-xjq5-qyha","summary":"Security researcher Paul Stone reported that a\nJava applet could be used to mimic interaction with form autocomplete\ncontrols and steal entries from the form history.Firefox 4 was not affected by this issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0067.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0067.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0067","reference_id":"","reference_type":"","scores":[{"value":"0.0052","scoring_system":"epss","scoring_elements":"0.67114","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0067"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=700644","reference_id":"700644","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=700644"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0067","reference_id":"CVE-2011-0067","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0067"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-14","reference_id":"mfsa2011-14","reference_type":"","scores":[{"value":"none","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2011-14"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0471","reference_id":"RHSA-2011:0471","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0471"},{"reference_url":"https://usn.ubuntu.com/1112-1/","reference_id":"USN-1112-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1112-1/"},{"reference_url":"https://usn.ubuntu.com/1122-1/","reference_id":"USN-1122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-1/"},{"reference_url":"https://usn.ubuntu.com/1122-2/","reference_id":"USN-1122-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1122-2/"},{"reference_url":"https://usn.ubuntu.com/1123-1/","reference_id":"USN-1123-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1123-1/"}],"fixed_packages":[],"aliases":["CVE-2011-0067"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zxps-xjq5-qyha"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xulrunner@1.9.2.17-3%3Farch=el5_6"}