Lucene search

K

MitreCVELIST:CVE-2012-0478

HistoryApr 25, 2012 - 10:00 a.m.

CVE-2012-0478

2012-04-2510:00:00

mitre

www.cve.org

9.5 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

The texImage2D implementation in the WebGL subsystem in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 does not properly restrict JSVAL_TO_OBJECT casts, which might allow remote attackers to execute arbitrary code via a crafted web page.

References

secunia.com/advisories/48972

secunia.com/advisories/49047

secunia.com/advisories/49055

www.mandriva.com/security/advisories?name=MDVSA-2012:066

www.mandriva.com/security/advisories?name=MDVSA-2012:081

www.mozilla.org/security/announce/2012/mfsa2012-30.html

www.securityfocus.com/bid/53227

bugzilla.mozilla.org/show_bug.cgi?id=727547

exchange.xforce.ibmcloud.com/vulnerabilities/75155

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16893

9.5 High

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

Related for CVELIST:CVE-2012-0478

cve1 veracode1 mozilla1 ubuntucve1 nvd1 prion1 openvas32 nessus34 oraclelinux2 centos2 redhat2 ubuntu3 suse3 freebsd1 securityvulns1 gentoo1