Lucene search

K

MitreCVELIST:CVE-2012-0472

HistoryApr 25, 2012 - 10:00 a.m.

CVE-2012-0472

2012-04-2510:00:00

mitre

www.cve.org

9.8 High

AI Score

Confidence

High

0.032 Low

EPSS

Percentile

91.2%

The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9, when certain Windows Vista and Windows 7 configurations are used, does not properly restrict font-rendering attempts, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.

References

secunia.com/advisories/48972

secunia.com/advisories/49055

www.mandriva.com/security/advisories?name=MDVSA-2012:066

www.mandriva.com/security/advisories?name=MDVSA-2012:081

www.mozilla.org/security/announce/2012/mfsa2012-25.html

www.securityfocus.com/bid/53218

bugzilla.mozilla.org/show_bug.cgi?id=744480

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17067

9.8 High

AI Score

Confidence

High

0.032 Low

EPSS

Percentile

91.2%

Related for CVELIST:CVE-2012-0472

prion1 veracode1 mozilla1 openvas24 nvd1 ubuntucve1 cve1 nessus24 oraclelinux2 redhat2 centos2 suse3 securityvulns1 freebsd1