Lucene search
UbuntuUSN-1360-1HistoryFeb 13, 2012 - 12:00 a.m.
Firefox vulnerability
2012-02-1300:00:00
ubuntu.com
41
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.6 High
AI Score
Confidence
High
0.13 Low
EPSS
Percentile
95.5%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04
Packages
- firefox - Mozilla Open Source web browser
Details
Andrew McCreight and Olli Pettay discovered a use-after-free vulnerability
in the XBL bindings. An attacker could exploit this to cause a denial of
service via application crash, or potentially execute code with the
privileges of the user invoking Firefox. (CVE-2012-0452)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | firefox | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | abrowser | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | abrowser-branding | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-branding | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-dbg | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-dev | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-globalmenu | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-gnome-support | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-gnome-support-dbg | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | firefox-mozsymbols | < 10.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
Related
cve
cve
CVE-2012-0452
2012-02-11 02:55:00
nessus
nessus
Thunderbird 10.x < 10.0.1 Memory Corruption (Mac OS X)
2012-02-21 00:00:00
Mandriva Linux Security Advisory : mozilla-thunderbird (MDVSA-2012:018)
2012-09-06 00:00:00
suse
suse
MozillaFirefox to 10.0.1 (critical)
2012-02-14 20:08:25
Security update for Mozilla Firefox (critical)
2012-02-16 04:08:25
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
seebug
seebug
openvas
openvas
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2012:0258-1)
2012-08-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0261-1)
2021-06-09 00:00:00
Mozilla Firefox Security Advisory (MFSA2012-10) - Linux
2021-11-11 00:00:00
prion
prion
Design/Logic Flaw
2012-02-11 02:55:00
freebsd
freebsd
mozilla -- use-after-free in nsXBLDocumentInfo::ReadPrototypeBindings
2012-02-10 00:00:00
ubuntucve
ubuntucve
CVE-2012-0452
2012-02-13 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey use-after-free
2012-02-14 00:00:00
cvelist
cvelist
CVE-2012-0452
2012-02-11 02:00:00
nvd
nvd
CVE-2012-0452
2012-02-11 02:55:00
mozilla
mozilla
use after free in nsXBLDocumentInfo::ReadPrototypeBindings — Mozilla
2012-02-10 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-02-17 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.6 High
AI Score
Confidence
High
0.13 Low
EPSS
Percentile
95.5%
Related for USN-1360-1