Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-1939
HistoryJun 05, 2012 - 12:00 a.m.

CVE-2012-1939

2012-06-0500:00:00
ubuntu.com
ubuntu.com
3

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.041 Low

EPSS

Percentile

91.9%

jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ESR
10.x before 10.0.5 does not properly determine data types, which allows
remote attackers to cause a denial of service (memory corruption and
application crash) or possibly execute arbitrary code via crafted
JavaScript code.

Notes

Author Note
mdeslaur ESR version only

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.041 Low

EPSS

Percentile

91.9%

Related for UB:CVE-2012-1939