{
  "threat_severity" : "Moderate",
  "public_date" : "2011-04-28T00:00:00Z",
  "bugzilla" : {
    "description" : "Mozilla directory traversal via resource protocol (MFSA 2011-16)",
    "id" : "700635",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=700635"
  },
  "cvss" : {
    "cvss_base_score" : "5.1",
    "cvss_scoring_vector" : "AV:N/AC:H/Au:N/C:P/I:P/A:P",
    "status" : "verified"
  },
  "details" : [ "Directory traversal vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 on Windows allows remote attackers to determine the existence of arbitrary files, and possibly load resources, via vectors involving a resource: URL." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0471",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "firefox-0:3.6.17-2.el4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0471",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "firefox-0:3.6.17-1.el5_6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0471",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5",
    "package" : "xulrunner-0:1.9.2.17-3.el5_6"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0471",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "firefox-0:3.6.17-1.el6_0"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0471",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "xulrunner-0:1.9.2.17-4.el6_0"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "release_date" : "2011-04-29T00:00:00Z",
    "advisory" : "RHSA-2011:0475",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6",
    "package" : "thunderbird-0:3.1.10-1.el6_0"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2011-0071\nhttps://nvd.nist.gov/vuln/detail/CVE-2011-0071" ],
  "name" : "CVE-2011-0071",
  "csaw" : false
}