Lucene search

[email protected]NVD:CVE-2012-1949

HistoryJul 18, 2012 - 10:26 a.m.

CVE-2012-1949

2012-07-1810:26:48

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 13.0, Thunderbird 5.0 through 13.0, and SeaMonkey before 2.11 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Affected configurations

NVD

Node

mozillafirefoxMatch4.0

mozillafirefoxMatch4.0beta1

mozillafirefoxMatch4.0beta10

mozillafirefoxMatch4.0beta11

mozillafirefoxMatch4.0beta12

mozillafirefoxMatch4.0beta2

mozillafirefoxMatch4.0beta3

mozillafirefoxMatch4.0beta4

mozillafirefoxMatch4.0beta5

mozillafirefoxMatch4.0beta6

mozillafirefoxMatch4.0beta7

mozillafirefoxMatch4.0beta8

mozillafirefoxMatch4.0beta9

mozillafirefoxMatch4.0.1

mozillafirefoxMatch5.0

mozillafirefoxMatch5.0.1

mozillafirefoxMatch6.0

mozillafirefoxMatch6.0.1

mozillafirefoxMatch6.0.2

mozillafirefoxMatch7.0

mozillafirefoxMatch7.0.1

mozillafirefoxMatch8.0

mozillafirefoxMatch8.0.1

mozillafirefoxMatch9.0

mozillafirefoxMatch9.0.1

mozillafirefoxMatch11.0

mozillafirefoxMatch12.0

mozillafirefoxMatch12.0beta6

mozillafirefoxMatch13.0

Node

mozillathunderbirdMatch5.0

mozillathunderbirdMatch6.0

mozillathunderbirdMatch6.0.1

mozillathunderbirdMatch6.0.2

mozillathunderbirdMatch7.0

mozillathunderbirdMatch7.0.1

mozillathunderbirdMatch8.0

mozillathunderbirdMatch9.0

mozillathunderbirdMatch9.0.1

mozillathunderbirdMatch10.0

mozillathunderbirdMatch10.0.1

mozillathunderbirdMatch10.0.2

mozillathunderbirdMatch10.0.3

mozillathunderbirdMatch10.0.4

mozillathunderbirdMatch11.0

mozillathunderbirdMatch12.0

mozillathunderbirdMatch13.0

Node

mozillaseamonkeyRange≤2.10

mozillaseamonkeyMatch1.0

mozillaseamonkeyMatch1.0alpha

mozillaseamonkeyMatch1.0beta

mozillaseamonkeyMatch1.0.1

mozillaseamonkeyMatch1.0.2

mozillaseamonkeyMatch1.0.3

mozillaseamonkeyMatch1.0.4

mozillaseamonkeyMatch1.0.5

mozillaseamonkeyMatch1.0.6

mozillaseamonkeyMatch1.0.7

mozillaseamonkeyMatch1.0.8

mozillaseamonkeyMatch1.0.9

mozillaseamonkeyMatch1.1

mozillaseamonkeyMatch1.1alpha

mozillaseamonkeyMatch1.1beta

mozillaseamonkeyMatch1.1.1

mozillaseamonkeyMatch1.1.2

mozillaseamonkeyMatch1.1.3

mozillaseamonkeyMatch1.1.4

mozillaseamonkeyMatch1.1.5

mozillaseamonkeyMatch1.1.6

mozillaseamonkeyMatch1.1.7

mozillaseamonkeyMatch1.1.8

mozillaseamonkeyMatch1.1.9

mozillaseamonkeyMatch1.1.10

mozillaseamonkeyMatch1.1.11

mozillaseamonkeyMatch1.1.12

mozillaseamonkeyMatch1.1.13

mozillaseamonkeyMatch1.1.14

mozillaseamonkeyMatch1.1.15

mozillaseamonkeyMatch1.1.16

mozillaseamonkeyMatch1.1.17

mozillaseamonkeyMatch1.1.18

mozillaseamonkeyMatch1.1.19

mozillaseamonkeyMatch1.5.0.8

mozillaseamonkeyMatch1.5.0.9

mozillaseamonkeyMatch1.5.0.10

mozillaseamonkeyMatch2.0

mozillaseamonkeyMatch2.0alpha_1

mozillaseamonkeyMatch2.0alpha_2

mozillaseamonkeyMatch2.0alpha_3

mozillaseamonkeyMatch2.0beta_1

mozillaseamonkeyMatch2.0beta_2

mozillaseamonkeyMatch2.0rc1

mozillaseamonkeyMatch2.0rc2

mozillaseamonkeyMatch2.0.1

mozillaseamonkeyMatch2.0.2

mozillaseamonkeyMatch2.0.3

mozillaseamonkeyMatch2.0.4

mozillaseamonkeyMatch2.0.5

mozillaseamonkeyMatch2.0.6

mozillaseamonkeyMatch2.0.7

mozillaseamonkeyMatch2.0.8

mozillaseamonkeyMatch2.0.9

mozillaseamonkeyMatch2.0.10

mozillaseamonkeyMatch2.0.11

mozillaseamonkeyMatch2.0.12

mozillaseamonkeyMatch2.0.13

mozillaseamonkeyMatch2.0.14

mozillaseamonkeyMatch2.1

mozillaseamonkeyMatch2.1alpha1

mozillaseamonkeyMatch2.1alpha2

mozillaseamonkeyMatch2.1alpha3

mozillaseamonkeyMatch2.1beta1

mozillaseamonkeyMatch2.1beta2

mozillaseamonkeyMatch2.1beta3

mozillaseamonkeyMatch2.1rc1

mozillaseamonkeyMatch2.1rc2

References

lists.opensuse.org/opensuse-security-announce/2012-07/msg00011.html

lists.opensuse.org/opensuse-security-announce/2012-07/msg00012.html

lists.opensuse.org/opensuse-security-announce/2012-07/msg00013.html

lists.opensuse.org/opensuse-security-announce/2012-07/msg00016.html

osvdb.org/84006

secunia.com/advisories/49965

secunia.com/advisories/49968

secunia.com/advisories/49972

secunia.com/advisories/49992

secunia.com/advisories/49993

secunia.com/advisories/49994

www.mozilla.org/security/announce/2012/mfsa2012-42.html

www.securityfocus.com/bid/54580

www.securitytracker.com/id?1027256

www.securitytracker.com/id?1027257

www.securitytracker.com/id?1027258

www.ubuntu.com/usn/USN-1509-1

www.ubuntu.com/usn/USN-1509-2

www.ubuntu.com/usn/USN-1510-1

bugzilla.mozilla.org/show_bug.cgi?id=712914

bugzilla.mozilla.org/show_bug.cgi?id=717488

bugzilla.mozilla.org/show_bug.cgi?id=718290

bugzilla.mozilla.org/show_bug.cgi?id=725499

bugzilla.mozilla.org/show_bug.cgi?id=738841

bugzilla.mozilla.org/show_bug.cgi?id=743876

bugzilla.mozilla.org/show_bug.cgi?id=752662

bugzilla.mozilla.org/show_bug.cgi?id=754725

bugzilla.mozilla.org/show_bug.cgi?id=757431

bugzilla.mozilla.org/show_bug.cgi?id=765179

bugzilla.mozilla.org/show_bug.cgi?id=766018

bugzilla.mozilla.org/show_bug.cgi?id=766304

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17027

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Related for NVD:CVE-2012-1949

ubuntucve1 cvelist1 cve1 prion1 openvas41 mozilla1 nessus22 suse7 ubuntu3 freebsd1 gentoo1