CVE-2012-1970

HIGH

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

References

http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00028.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00011.html

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00014.html

http://rhn.redhat.com/errata/RHSA-2012-1210.html

http://rhn.redhat.com/errata/RHSA-2012-1211.html

http://www.debian.org/security/2012/dsa-2553

http://www.debian.org/security/2012/dsa-2554

http://www.debian.org/security/2012/dsa-2556

http://www.mozilla.org/security/announce/2012/mfsa2012-57.html

http://www.securityfocus.com/bid/55266

http://www.ubuntu.com/usn/USN-1548-1

http://www.ubuntu.com/usn/USN-1548-2

http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

https://bugzilla.mozilla.org/show_bug.cgi?id=745158

https://bugzilla.mozilla.org/show_bug.cgi?id=758408

https://bugzilla.mozilla.org/show_bug.cgi?id=761831

https://bugzilla.mozilla.org/show_bug.cgi?id=764176

https://bugzilla.mozilla.org/show_bug.cgi?id=775206

https://bugzilla.mozilla.org/show_bug.cgi?id=777806

https://bugzilla.mozilla.org/show_bug.cgi?id=778765

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16910

Details

Source: MITRE

Published: 2012-08-29

Updated: 2020-08-28

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH