Lucene search
Ubuntu.comUB:CVE-2012-4202HistoryNov 21, 2012 - 12:00 a.m.
CVE-2012-4202
2012-11-2100:00:00
ubuntu.com
ubuntu.com
9
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.027 Low
EPSS
Percentile
90.5%
Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function
in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11,
Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey
before 2.14 allows remote attackers to execute arbitrary code via a crafted
GIF image.
Notes
| Author | Note |
|---|---|
| jdstrand | xulrunner-1.9.2 unmaintained upstream (see README.mozilla for details) |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | firefox | < 17.0+build2-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | firefox | < 17.0+build2-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | firefox | < 17.0+build2-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | firefox | < 17.0+build2-0ubuntu0.12.10.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | thunderbird | < 17.0+build2-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | thunderbird | < 17.0+build2-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | thunderbird | < 17.0+build2-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | thunderbird | < 17.0+build2-0ubuntu0.12.10.1 | UNKNOWN |
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-92) - Linux
2021-11-11 00:00:00
Ubuntu: Security Advisory (USN-1638-3)
2012-12-04 00:00:00
Ubuntu: Security Advisory (USN-1638-2)
2012-11-23 00:00:00
nvd
nvd
CVE-2012-4202
2012-11-21 12:55:01
cve
cve
CVE-2012-4202
2012-11-21 12:55:01
mozilla
mozilla
Buffer overflow while rendering GIF images — Mozilla
2012-11-20 00:00:00
prion
prion
Heap overflow
2012-11-21 12:55:00
cvelist
cvelist
CVE-2012-4202
2012-11-21 11:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: seamonkey-2.14-1.fc17
2012-12-04 04:58:59
[SECURITY] Fedora 18 Update: seamonkey-2.14-1.fc18
2012-12-04 05:23:29
[SECURITY] Fedora 16 Update: seamonkey-2.14-1.fc16
2012-12-04 04:52:29
nessus
nessus
Fedora 18 : seamonkey-2.14-1.fc18 (2012-18894)
2012-12-04 00:00:00
Fedora 16 : seamonkey-2.14-1.fc16 (2012-18931)
2012-12-04 00:00:00
Fedora 17 : seamonkey-2.14-1.fc17 (2012-18952)
2012-12-04 00:00:00
redhat
redhat
(RHSA-2012:1483) Critical: thunderbird security update
2012-11-20 00:00:00
(RHSA-2012:1482) Critical: firefox security update
2012-11-20 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-11-20 00:00:00
firefox security update
2012-11-20 00:00:00
veracode
veracode
Arbitrary Code Execution Or Denial Of Service (DoS)
2019-05-02 04:41:15
Arbitrary Code Execution
2019-05-02 04:41:13
Arbitrary Code Execution
2019-05-02 04:41:14
centos
centos
thunderbird security update
2012-11-22 02:10:10
firefox, xulrunner security update
2012-11-22 02:03:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-11-21 00:00:00
ubufox update
2012-11-21 00:00:00
Firefox regressions
2012-12-03 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-11-20 00:00:00
suse
suse
security update to Firefox 17.0 and other Mozilla based packages (important)
2013-01-23 14:07:31
Security update for Mozilla Firefox (important)
2012-11-29 01:08:52
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-12-03 00:00:00
ibm
ibm
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.027 Low
EPSS
Percentile
90.5%
Related for UB:CVE-2012-4202