Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:30109
HistoryFeb 14, 2012 - 12:00 a.m.

Mozilla Firefox/Thunderbird/SeaMonkey "ReadPrototypeBindings()"内存破坏漏洞

2012-02-1400:00:00
Root
www.seebug.org
17

0.13 Low

EPSS

Percentile

95.5%

JSON

BUGTRAQ ID: 51975
CVE ID: CVE-2012-0452

Firefox是一款非常流行的开源WEB浏览器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。

Mozilla Firefox 10.0.1、Thunderbird 10.0.1、SeaMonkey 2.7之前版本在实现上存在内存破坏漏洞,在处理哈希表单中的XBL绑定时, "nsXBLDocumentInfo::ReadPrototypeBindings()"方法中存在释放后重用漏洞,可造成循环收集器调用无效虚拟函数。
0
Mozilla Firefox 10.x
Mozilla Thunderbird 10.x
Mozilla SeaMonkey 2.x
厂商补丁:

Mozilla

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.mozilla.org/security/

Related

nessus 17
openvas 20
prion 1
freebsd 1
cve 1
suse 3
ubuntucve 1
ubuntu 2
securityvulns 1
cvelist 1
nvd 1
mozilla 1
gentoo 1
nessus
nessus
SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 5807)
2012-02-16 00:00:00
Mozilla Thunderbird 10.x < 10.0.1 Memory Corruption
2012-02-13 00:00:00
SeaMonkey < 2.7.1 Memory Corruption
2012-02-13 00:00:00
openvas
openvas
Mandriva Update for mozilla-thunderbird MDVSA-2012:018 (mozilla-thunderbird)
2012-08-03 00:00:00
SuSE Update for MozillaFirefox openSUSE-SU-2012:0258-1 (MozillaFirefox)
2012-08-02 00:00:00
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2012:0258-1)
2012-08-02 00:00:00
prion
prion
Design/Logic Flaw
2012-02-11 02:55:00
freebsd
freebsd
mozilla -- use-after-free in nsXBLDocumentInfo::ReadPrototypeBindings
2012-02-10 00:00:00
cve
cve
CVE-2012-0452
2012-02-11 02:55:00
suse
suse
MozillaFirefox to 10.0.1 (critical)
2012-02-14 20:08:25
Security update for Mozilla Firefox (critical)
2012-02-16 04:08:25
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
ubuntucve
ubuntucve
CVE-2012-0452
2012-02-13 00:00:00
ubuntu
ubuntu
Firefox vulnerability
2012-02-13 00:00:00
Thunderbird vulnerabilities
2012-02-17 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey use-after-free
2012-02-14 00:00:00
cvelist
cvelist
CVE-2012-0452
2012-02-11 02:00:00
nvd
nvd
CVE-2012-0452
2012-02-11 02:55:00
mozilla
mozilla
use after free in nsXBLDocumentInfo::ReadPrototypeBindings — Mozilla
2012-02-10 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

0.13 Low

EPSS

Percentile

95.5%

JSON
Related for SSV:30109
nessus17openvas20prion1freebsd1cve1suse3ubuntucve1ubuntu2securityvulns1cvelist1nvd1mozilla1gentoo1