Memory corruption

2012-08-2910:56:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

82.1%

JSON

The WebGL implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 on Linux, when a large number of sampler uniforms are used, does not properly interact with Mesa drivers, which allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a crafted web site.

CPENameOperatorVersion
ubuntu_linuxeq11.04
ubuntu_linuxeq11.10
ubuntu_linuxeq12.04
ubuntu_linuxeq10.04
firefoxlt15.0
firefox_esrge10.0
firefox_esrlt10.0.7
seamonkeylt2.12
thunderbirdlt15.0
thunderbird_esrge10.0

Name	Operator	Version
ubuntu_linux	eq	11.04
ubuntu_linux	eq	11.10
ubuntu_linux	eq	12.04
ubuntu_linux	eq	10.04
firefox	lt	15.0
firefox_esr	ge	10.0
firefox_esr	lt	10.0.7
seamonkey	lt	2.12
thunderbird	lt	15.0
thunderbird_esr	ge	10.0