Lucene search

K
cve[email protected]CVE-2012-1143
HistoryApr 25, 2012 - 10:10 a.m.

CVE-2012-1143

2012-04-2510:10:18
CWE-189
web.nvd.nist.gov
30
freetype
cve-2012-1143
denial of service
font
remote attackers
nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.1 Medium

AI Score

Confidence

Low

0.053 Low

EPSS

Percentile

93.1%

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted font.

Affected configurations

NVD
Node
freetypefreetypeRange2.4.8
OR
freetypefreetypeMatch1.3.1
OR
freetypefreetypeMatch2.0.0
OR
freetypefreetypeMatch2.0.1
OR
freetypefreetypeMatch2.0.2
OR
freetypefreetypeMatch2.0.3
OR
freetypefreetypeMatch2.0.4
OR
freetypefreetypeMatch2.0.5
OR
freetypefreetypeMatch2.0.6
OR
freetypefreetypeMatch2.0.7
OR
freetypefreetypeMatch2.0.8
OR
freetypefreetypeMatch2.0.9
OR
freetypefreetypeMatch2.1
OR
freetypefreetypeMatch2.1.3
OR
freetypefreetypeMatch2.1.4
OR
freetypefreetypeMatch2.1.5
OR
freetypefreetypeMatch2.1.6
OR
freetypefreetypeMatch2.1.7
OR
freetypefreetypeMatch2.1.8
OR
freetypefreetypeMatch2.1.8rc1
OR
freetypefreetypeMatch2.1.9
OR
freetypefreetypeMatch2.1.10
OR
freetypefreetypeMatch2.2.0
OR
freetypefreetypeMatch2.2.1
OR
freetypefreetypeMatch2.3.0
OR
freetypefreetypeMatch2.3.1
OR
freetypefreetypeMatch2.3.2
OR
freetypefreetypeMatch2.3.3
OR
freetypefreetypeMatch2.3.4
OR
freetypefreetypeMatch2.3.5
OR
freetypefreetypeMatch2.3.6
OR
freetypefreetypeMatch2.3.7
OR
freetypefreetypeMatch2.3.8
OR
freetypefreetypeMatch2.3.9
OR
freetypefreetypeMatch2.3.10
OR
freetypefreetypeMatch2.3.11
OR
freetypefreetypeMatch2.3.12
OR
freetypefreetypeMatch2.4.0
OR
freetypefreetypeMatch2.4.1
OR
freetypefreetypeMatch2.4.2
OR
freetypefreetypeMatch2.4.3
OR
freetypefreetypeMatch2.4.4
OR
freetypefreetypeMatch2.4.5
OR
freetypefreetypeMatch2.4.6
OR
freetypefreetypeMatch2.4.7
OR
mozillafirefox_mobileRange10.0.3
OR
mozillafirefox_mobileMatch1.0
OR
mozillafirefox_mobileMatch4.0
OR
mozillafirefox_mobileMatch4.0beta1
OR
mozillafirefox_mobileMatch4.0beta2
OR
mozillafirefox_mobileMatch4.0beta3
OR
mozillafirefox_mobileMatch4.0beta4
OR
mozillafirefox_mobileMatch5.0
OR
mozillafirefox_mobileMatch6.0
OR
mozillafirefox_mobileMatch6.0.1
OR
mozillafirefox_mobileMatch6.0.2
OR
mozillafirefox_mobileMatch7.0
OR
mozillafirefox_mobileMatch8.0
OR
mozillafirefox_mobileMatch9.0
OR
mozillafirefox_mobileMatch10.0
OR
mozillafirefox_mobileMatch10.0.1
OR
mozillafirefox_mobileMatch10.0.2

References

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.1 Medium

AI Score

Confidence

Low

0.053 Low

EPSS

Percentile

93.1%