10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.246 Low
EPSS
Percentile
96.6%
The Mozilla Project reports:
MFSA 2012-20 Miscellaneous memory safety hazards (rv:12.0/ rv:10.0.4)
MFSA 2012-21 Multiple security flaws fixed in FreeType v2.4.9
MFSA 2012-22 use-after-free in IDBKeyRange
MFSA 2012-23 Invalid frees causes heap corruption in gfxImageSurface
MFSA 2012-24 Potential XSS via multibyte content processing errors
MFSA 2012-25 Potential memory corruption during font rendering using cairo-dwrite
MFSA 2012-26 WebGL.drawElements may read illegal video memory due to FindMaxUshortElement error
MFSA 2012-27 Page load short-circuit can lead to XSS
MFSA 2012-28 Ambiguous IPv6 in Origin headers may bypass webserver access restrictions
MFSA 2012-29 Potential XSS through ISO-2022-KR/ISO-2022-CN decoding issues
MFSA 2012-30 Crash with WebGL content using textImage2D
MFSA 2012-31 Off-by-one error in OpenType Sanitizer
MFSA 2012-32 HTTP Redirections and remote content can be read by javascript errors
MFSA 2012-33 Potential site identity spoofing when loading RSS and Atom feeds
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | firefox | < 12.0,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox | < 10.0.4,1 | UNKNOWN |
FreeBSD | any | noarch | linux-seamonkey | < 2.9 | UNKNOWN |
FreeBSD | any | noarch | linux-thunderbird | < 10.0.4 | UNKNOWN |
FreeBSD | any | noarch | seamonkey | < 2.9 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | < 12.0 | UNKNOWN |
FreeBSD | any | noarch | libxul | < 10.0.4 | UNKNOWN |
www.mozilla.org/security/announce/2012/mfsa2012-20.html
www.mozilla.org/security/announce/2012/mfsa2012-21.html
www.mozilla.org/security/announce/2012/mfsa2012-22.html
www.mozilla.org/security/announce/2012/mfsa2012-23.html
www.mozilla.org/security/announce/2012/mfsa2012-24.html
www.mozilla.org/security/announce/2012/mfsa2012-25.html
www.mozilla.org/security/announce/2012/mfsa2012-26.html
www.mozilla.org/security/announce/2012/mfsa2012-27.html
www.mozilla.org/security/announce/2012/mfsa2012-28.html
www.mozilla.org/security/announce/2012/mfsa2012-29.html
www.mozilla.org/security/announce/2012/mfsa2012-30.html
www.mozilla.org/security/announce/2012/mfsa2012-31.html
www.mozilla.org/security/announce/2012/mfsa2012-32.html
www.mozilla.org/security/announce/2012/mfsa2012-33.html