Lucene search

K
nvd[email protected]NVD:CVE-2012-1140
HistoryApr 25, 2012 - 10:10 a.m.

CVE-2012-1140

2012-04-2510:10:18
CWE-119
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.057

Percentile

93.4%

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or possibly execute arbitrary code via a crafted PostScript font object.

Affected configurations

Nvd
Node
freetypefreetypeRange2.4.8
OR
freetypefreetypeMatch1.3.1
OR
freetypefreetypeMatch2.0.0
OR
freetypefreetypeMatch2.0.1
OR
freetypefreetypeMatch2.0.2
OR
freetypefreetypeMatch2.0.3
OR
freetypefreetypeMatch2.0.4
OR
freetypefreetypeMatch2.0.5
OR
freetypefreetypeMatch2.0.6
OR
freetypefreetypeMatch2.0.7
OR
freetypefreetypeMatch2.0.8
OR
freetypefreetypeMatch2.0.9
OR
freetypefreetypeMatch2.1
OR
freetypefreetypeMatch2.1.3
OR
freetypefreetypeMatch2.1.4
OR
freetypefreetypeMatch2.1.5
OR
freetypefreetypeMatch2.1.6
OR
freetypefreetypeMatch2.1.7
OR
freetypefreetypeMatch2.1.8
OR
freetypefreetypeMatch2.1.8rc1
OR
freetypefreetypeMatch2.1.9
OR
freetypefreetypeMatch2.1.10
OR
freetypefreetypeMatch2.2.0
OR
freetypefreetypeMatch2.2.1
OR
freetypefreetypeMatch2.3.0
OR
freetypefreetypeMatch2.3.1
OR
freetypefreetypeMatch2.3.2
OR
freetypefreetypeMatch2.3.3
OR
freetypefreetypeMatch2.3.4
OR
freetypefreetypeMatch2.3.5
OR
freetypefreetypeMatch2.3.6
OR
freetypefreetypeMatch2.3.7
OR
freetypefreetypeMatch2.3.8
OR
freetypefreetypeMatch2.3.9
OR
freetypefreetypeMatch2.3.10
OR
freetypefreetypeMatch2.3.11
OR
freetypefreetypeMatch2.3.12
OR
freetypefreetypeMatch2.4.0
OR
freetypefreetypeMatch2.4.1
OR
freetypefreetypeMatch2.4.2
OR
freetypefreetypeMatch2.4.3
OR
freetypefreetypeMatch2.4.4
OR
freetypefreetypeMatch2.4.5
OR
freetypefreetypeMatch2.4.6
OR
freetypefreetypeMatch2.4.7
OR
mozillafirefox_mobileRange10.0.3
OR
mozillafirefox_mobileMatch1.0
OR
mozillafirefox_mobileMatch4.0
OR
mozillafirefox_mobileMatch4.0beta1
OR
mozillafirefox_mobileMatch4.0beta2
OR
mozillafirefox_mobileMatch4.0beta3
OR
mozillafirefox_mobileMatch4.0beta4
OR
mozillafirefox_mobileMatch5.0
OR
mozillafirefox_mobileMatch6.0
OR
mozillafirefox_mobileMatch6.0.1
OR
mozillafirefox_mobileMatch6.0.2
OR
mozillafirefox_mobileMatch7.0
OR
mozillafirefox_mobileMatch8.0
OR
mozillafirefox_mobileMatch9.0
OR
mozillafirefox_mobileMatch10.0
OR
mozillafirefox_mobileMatch10.0.1
OR
mozillafirefox_mobileMatch10.0.2
VendorProductVersionCPE
freetypefreetype*cpe:2.3:a:freetype:freetype:*:*:*:*:*:*:*:*
freetypefreetype1.3.1cpe:2.3:a:freetype:freetype:1.3.1:*:*:*:*:*:*:*
freetypefreetype2.0.0cpe:2.3:a:freetype:freetype:2.0.0:*:*:*:*:*:*:*
freetypefreetype2.0.1cpe:2.3:a:freetype:freetype:2.0.1:*:*:*:*:*:*:*
freetypefreetype2.0.2cpe:2.3:a:freetype:freetype:2.0.2:*:*:*:*:*:*:*
freetypefreetype2.0.3cpe:2.3:a:freetype:freetype:2.0.3:*:*:*:*:*:*:*
freetypefreetype2.0.4cpe:2.3:a:freetype:freetype:2.0.4:*:*:*:*:*:*:*
freetypefreetype2.0.5cpe:2.3:a:freetype:freetype:2.0.5:*:*:*:*:*:*:*
freetypefreetype2.0.6cpe:2.3:a:freetype:freetype:2.0.6:*:*:*:*:*:*:*
freetypefreetype2.0.7cpe:2.3:a:freetype:freetype:2.0.7:*:*:*:*:*:*:*
Rows per page:
1-10 of 621

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.057

Percentile

93.4%