Lucene search

[email protected]CVE-2012-1942

HistoryJun 05, 2012 - 11:55 p.m.

CVE-2012-1942

2012-06-0523:55:00

CWE-264

[email protected]

web.nvd.nist.gov

mozilla

firefox

thunderbird

seamonkey

updater

windows

dll

security vulnerability

cve-2012-1942

nvd

6.1 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The Mozilla Updater and Windows Updater Service in Mozilla Firefox 12.0, Thunderbird 12.0, and SeaMonkey 2.9 on Windows allow local users to gain privileges by loading a DLL file in a privileged context.

CPENameOperatorVersion
mozilla:firefoxmozilla firefoxeq12.0
mozilla:seamonkeymozilla seamonkeyeq2.9
mozilla:thunderbirdmozilla thunderbirdeq12.0

CPE	Name	Operator	Version
mozilla:firefox	mozilla firefox	eq	12.0
mozilla:seamonkey	mozilla seamonkey	eq	2.9
mozilla:thunderbird	mozilla thunderbird	eq	12.0

References

lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html

www.mozilla.org/security/announce/2012/mfsa2012-35.html

www.mozilla.org/security/announce/2013/mfsa2013-45.html

bugzilla.mozilla.org/show_bug.cgi?id=748764

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16951

6.1 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2012-1942

prion1 seebug1 openvas6 mozilla2 nessus17 securityvulns2 suse2 freebsd1