CVE-2018-12385

MEDIUM

Description

A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the user profile directory. This issue is only exploitable in combination with another vulnerability allowing an attacker to write data into the local cache or from locally installed malware. This issue also triggers a non-exploitable startup crash for users switching between the Nightly and Release versions of Firefox if the same profile is used. This vulnerability affects Thunderbird < 60.2.1, Firefox ESR < 60.2.1, and Firefox < 62.0.2.

References

http://www.securityfocus.com/bid/105380

http://www.securitytracker.com/id/1041700

http://www.securitytracker.com/id/1041701

https://access.redhat.com/errata/RHSA-2018:2834

https://access.redhat.com/errata/RHSA-2018:2835

https://access.redhat.com/errata/RHSA-2018:3403

https://access.redhat.com/errata/RHSA-2018:3458

https://bugzilla.mozilla.org/show_bug.cgi?id=1490585

https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html

https://security.gentoo.org/glsa/201810-01

https://security.gentoo.org/glsa/201811-13

https://usn.ubuntu.com/3778-1/

https://usn.ubuntu.com/3793-1/

https://www.debian.org/security/2018/dsa-4304

https://www.debian.org/security/2018/dsa-4327

https://www.mozilla.org/security/advisories/mfsa2018-22/

https://www.mozilla.org/security/advisories/mfsa2018-23/

https://www.mozilla.org/security/advisories/mfsa2018-25/

Details

Source: MITRE

Published: 2018-10-18

Updated: 2018-12-06

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 4.4

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3.0

Base Score: 7

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1

Severity: HIGH

Tenable Plugins

View all (42 total)

IDNameProductFamilySeverity
127413NewStart CGSL MAIN 4.05 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0145)NessusNewStart CGSL Local Security Checks
high
127404NewStart CGSL MAIN 4.05 : firefox Multiple Vulnerabilities (NS-SA-2019-0141)NessusNewStart CGSL Local Security Checks
high
127208NewStart CGSL CORE 5.04 / MAIN 5.04 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0037)NessusNewStart CGSL Local Security Checks
high
127198NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2019-0032)NessusNewStart CGSL Local Security Checks
high
123311openSUSE Security Update : MozillaFirefox (openSUSE-2019-716)NessusSuSE Local Security Checks
medium
123293openSUSE Security Update : MozillaThunderbird (openSUSE-2019-680)NessusSuSE Local Security Checks
high
700408Mozilla Firefox < 62.0.2 DoSNessus Network MonitorWeb Clients
high
121478Mozilla Thunderbird < 60.2.1NessusMacOS X Local Security Checks
high
120146SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2018:3476-1)NessusSuSE Local Security Checks
medium
119451SUSE SLED12 / SLES12 Security Update : MozillaFirefox, MozillaFirefox-branding-SLE, llvm4, mozilla-nspr, mozilla-nss, apache2-mod_nss (SUSE-SU-2018:3591-2)NessusSuSE Local Security Checks
high
119208Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20181105)NessusScientific Linux Local Security Checks
high
119133GLSA-201811-13 : Mozilla Thunderbird: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
118890Debian DLA-1575-1 : thunderbird security updateNessusDebian Local Security Checks
high
118837CentOS 6 : thunderbird (CESA-2018:3403)NessusCentOS Local Security Checks
high
118813Oracle Linux 7 : thunderbird (ELSA-2018-3458)NessusOracle Linux Local Security Checks
high
118761EulerOS 2.0 SP3 : firefox (EulerOS-SA-2018-1367)NessusHuawei Local Security Checks
medium
118744RHEL 7 : thunderbird (RHSA-2018:3458)NessusRed Hat Local Security Checks
high
118742EulerOS 2.0 SP2 : firefox (EulerOS-SA-2018-1359)NessusHuawei Local Security Checks
high
118590SUSE SLED12 / SLES12 Security Update : MozillaFirefox, MozillaFirefox-branding-SLE, llvm4, mozilla-nspr, mozilla-nss, apache2-mod_nss (SUSE-SU-2018:3591-1)NessusSuSE Local Security Checks
high
118585Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20181031)NessusScientific Linux Local Security Checks
high
118552RHEL 6 : thunderbird (RHSA-2018:3403)NessusRed Hat Local Security Checks
high
118473Debian DSA-4327-1 : thunderbird - security updateNessusDebian Local Security Checks
high
118144Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Thunderbird vulnerabilities (USN-3793-1)NessusUbuntu Local Security Checks
high
117987openSUSE Security Update : MozillaThunderbird (openSUSE-2018-1139)NessusSuSE Local Security Checks
high
117939Mozilla Thunderbird < 60.2.1 Multiple VulnerabilitiesNessusWindows
high
117938Mozilla Thunderbird < 60.2.1 Multiple Vulnerabilities (macOS)NessusMacOS X Local Security Checks
high
117913Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : firefox vulnerabilities (USN-3778-1)NessusUbuntu Local Security Checks
medium
117894GLSA-201810-01 : Mozilla Firefox: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
117851Scientific Linux Security Update : firefox on SL7.x x86_64 (20180927)NessusScientific Linux Local Security Checks
medium
117850Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20180927)NessusScientific Linux Local Security Checks
medium
117834CentOS 7 : firefox (CESA-2018:2835)NessusCentOS Local Security Checks
medium
117833CentOS 6 : firefox (CESA-2018:2834)NessusCentOS Local Security Checks
medium
117818RHEL 7 : firefox (RHSA-2018:2835)NessusRed Hat Local Security Checks
medium
117817RHEL 6 : firefox (RHSA-2018:2834)NessusRed Hat Local Security Checks
medium
117815Oracle Linux 7 : firefox (ELSA-2018-2835)NessusOracle Linux Local Security Checks
medium
117690openSUSE Security Update : MozillaFirefox (openSUSE-2018-1042)NessusSuSE Local Security Checks
medium
117677Debian DSA-4304-1 : firefox-esr - security updateNessusDebian Local Security Checks
medium
117670Mozilla Firefox ESR < 60.2.1 Multiple VulnerabilitiesNessusWindows
medium
117669Mozilla Firefox ESR < 60.2.1 Multiple Vulnerabilities (macOS)NessusMacOS X Local Security Checks
medium
117668Mozilla Firefox < 62.0.2 VulnerabilityNessusWindows
medium
117667Mozilla Firefox < 62.0.2 Vulnerability (macOS)NessusMacOS X Local Security Checks
medium
117650FreeBSD : firefox -- Crash in TransportSecurityInfo due to cached data (3284d948-140c-4a3e-aa76-3b440e2006a8)NessusFreeBSD Local Security Checks
medium