CVE-2012-0467

HIGH

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

http://secunia.com/advisories/48920

http://secunia.com/advisories/48922

http://secunia.com/advisories/48972

http://secunia.com/advisories/49047

http://secunia.com/advisories/49055

http://www.debian.org/security/2012/dsa-2457

http://www.debian.org/security/2012/dsa-2458

http://www.debian.org/security/2012/dsa-2464

http://www.mandriva.com/security/advisories?name=MDVSA-2012:066

http://www.mandriva.com/security/advisories?name=MDVSA-2012:081

http://www.mozilla.org/security/announce/2012/mfsa2012-20.html

http://www.securityfocus.com/bid/53223

https://bugzilla.mozilla.org/show_bug.cgi?id=680456

https://bugzilla.mozilla.org/show_bug.cgi?id=706381

https://bugzilla.mozilla.org/show_bug.cgi?id=708825

https://bugzilla.mozilla.org/show_bug.cgi?id=714614

https://bugzilla.mozilla.org/show_bug.cgi?id=716556

https://bugzilla.mozilla.org/show_bug.cgi?id=720305

https://bugzilla.mozilla.org/show_bug.cgi?id=723453

https://bugzilla.mozilla.org/show_bug.cgi?id=726332

https://bugzilla.mozilla.org/show_bug.cgi?id=726502

https://bugzilla.mozilla.org/show_bug.cgi?id=732941

https://bugzilla.mozilla.org/show_bug.cgi?id=732951

https://bugzilla.mozilla.org/show_bug.cgi?id=733282

https://bugzilla.mozilla.org/show_bug.cgi?id=733979

https://bugzilla.mozilla.org/show_bug.cgi?id=735073

https://bugzilla.mozilla.org/show_bug.cgi?id=735943

https://bugzilla.mozilla.org/show_bug.cgi?id=736589

https://bugzilla.mozilla.org/show_bug.cgi?id=736609

https://bugzilla.mozilla.org/show_bug.cgi?id=737129

https://bugzilla.mozilla.org/show_bug.cgi?id=737182

https://bugzilla.mozilla.org/show_bug.cgi?id=737384

https://bugzilla.mozilla.org/show_bug.cgi?id=737875

https://bugzilla.mozilla.org/show_bug.cgi?id=740595

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17074

Details

Source: MITRE

Published: 2012-04-25

Updated: 2018-01-18

Risk Information

CVSS v2.0

Base Score: 10

Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)

Impact Score: 10

Exploitability Score: 10

Severity: HIGH