Lucene search

MitreCVE-2012-1951

HistoryJul 18, 2012 - 10:26 a.m.

CVE-2012-1951

2012-07-1810:26:48

CWE-399

mitre

web.nvd.nist.gov

cve

2012

1951

vulnerability

mozilla

firefox

thunderbird

use-after-free

remote attackers

denial of service

heap memory corruption

arbitrary code

smil timing

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.424

Percentile

97.4%

JSON

Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allows remote attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code by interacting with objects used for SMIL Timing.

Affected configurations

Nvd

Node

mozillafirefoxMatch4.0

mozillafirefoxMatch4.0beta1

mozillafirefoxMatch4.0beta10

mozillafirefoxMatch4.0beta11

mozillafirefoxMatch4.0beta12

mozillafirefoxMatch4.0beta2

mozillafirefoxMatch4.0beta3

mozillafirefoxMatch4.0beta4

mozillafirefoxMatch4.0beta5

mozillafirefoxMatch4.0beta6

mozillafirefoxMatch4.0beta7

mozillafirefoxMatch4.0beta8

mozillafirefoxMatch4.0beta9

mozillafirefoxMatch4.0.1

mozillafirefoxMatch5.0

mozillafirefoxMatch5.0.1

mozillafirefoxMatch6.0

mozillafirefoxMatch6.0.1

mozillafirefoxMatch6.0.2

mozillafirefoxMatch7.0

mozillafirefoxMatch7.0.1

mozillafirefoxMatch8.0

mozillafirefoxMatch8.0.1

mozillafirefoxMatch9.0

mozillafirefoxMatch9.0.1

mozillafirefoxMatch11.0

mozillafirefoxMatch12.0

mozillafirefoxMatch12.0beta6

mozillafirefoxMatch13.0

Node

mozillafirefox_esrMatch10.0

mozillafirefox_esrMatch10.0.1

mozillafirefox_esrMatch10.0.2

mozillafirefox_esrMatch10.0.3

mozillafirefox_esrMatch10.0.4

mozillafirefox_esrMatch10.0.5

Node

mozillathunderbirdMatch5.0

mozillathunderbirdMatch6.0

mozillathunderbirdMatch6.0.1

mozillathunderbirdMatch6.0.2

mozillathunderbirdMatch7.0

mozillathunderbirdMatch7.0.1

mozillathunderbirdMatch8.0

mozillathunderbirdMatch9.0

mozillathunderbirdMatch9.0.1

mozillathunderbirdMatch10.0

mozillathunderbirdMatch10.0.1

mozillathunderbirdMatch10.0.2

mozillathunderbirdMatch10.0.3

mozillathunderbirdMatch10.0.4

mozillathunderbirdMatch11.0

mozillathunderbirdMatch12.0

mozillathunderbirdMatch13.0

Node

mozillathunderbird_esrMatch10.0

mozillathunderbird_esrMatch10.0.1

mozillathunderbird_esrMatch10.0.2

mozillathunderbird_esrMatch10.0.3

mozillathunderbird_esrMatch10.0.4

mozillathunderbird_esrMatch10.0.5

Node

mozillaseamonkeyRange≤2.10

mozillaseamonkeyMatch1.0

mozillaseamonkeyMatch1.0alpha

mozillaseamonkeyMatch1.0beta

mozillaseamonkeyMatch1.0.1

mozillaseamonkeyMatch1.0.2

mozillaseamonkeyMatch1.0.3

mozillaseamonkeyMatch1.0.4

mozillaseamonkeyMatch1.0.5

mozillaseamonkeyMatch1.0.6

mozillaseamonkeyMatch1.0.7

mozillaseamonkeyMatch1.0.8

mozillaseamonkeyMatch1.0.9

mozillaseamonkeyMatch1.1

mozillaseamonkeyMatch1.1alpha

mozillaseamonkeyMatch1.1beta

mozillaseamonkeyMatch1.1.1

mozillaseamonkeyMatch1.1.2

mozillaseamonkeyMatch1.1.3

mozillaseamonkeyMatch1.1.4

mozillaseamonkeyMatch1.1.5

mozillaseamonkeyMatch1.1.6

mozillaseamonkeyMatch1.1.7

mozillaseamonkeyMatch1.1.8

mozillaseamonkeyMatch1.1.9

mozillaseamonkeyMatch1.1.10

mozillaseamonkeyMatch1.1.11

mozillaseamonkeyMatch1.1.12

mozillaseamonkeyMatch1.1.13

mozillaseamonkeyMatch1.1.14

mozillaseamonkeyMatch1.1.15

mozillaseamonkeyMatch1.1.16

mozillaseamonkeyMatch1.1.17

mozillaseamonkeyMatch1.1.18

mozillaseamonkeyMatch1.1.19

mozillaseamonkeyMatch1.5.0.8

mozillaseamonkeyMatch1.5.0.9

mozillaseamonkeyMatch1.5.0.10

mozillaseamonkeyMatch2.0

mozillaseamonkeyMatch2.0alpha_1

mozillaseamonkeyMatch2.0alpha_2

mozillaseamonkeyMatch2.0alpha_3

mozillaseamonkeyMatch2.0beta_1

mozillaseamonkeyMatch2.0beta_2

mozillaseamonkeyMatch2.0rc1

mozillaseamonkeyMatch2.0rc2

mozillaseamonkeyMatch2.0.1

mozillaseamonkeyMatch2.0.2

mozillaseamonkeyMatch2.0.3

mozillaseamonkeyMatch2.0.4

mozillaseamonkeyMatch2.0.5

mozillaseamonkeyMatch2.0.6

mozillaseamonkeyMatch2.0.7

mozillaseamonkeyMatch2.0.8

mozillaseamonkeyMatch2.0.9

mozillaseamonkeyMatch2.0.10

mozillaseamonkeyMatch2.0.11

mozillaseamonkeyMatch2.0.12

mozillaseamonkeyMatch2.0.13

mozillaseamonkeyMatch2.0.14

mozillaseamonkeyMatch2.1

mozillaseamonkeyMatch2.1alpha1

mozillaseamonkeyMatch2.1alpha2

mozillaseamonkeyMatch2.1alpha3

mozillaseamonkeyMatch2.1beta1

mozillaseamonkeyMatch2.1beta2

mozillaseamonkeyMatch2.1beta3

mozillaseamonkeyMatch2.1rc1

mozillaseamonkeyMatch2.1rc2

VendorProductVersionCPE
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:*:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta1:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta10:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta11:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta12:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta2:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta3:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta4:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta5:*:*:*:*:*:*
mozillafirefox4.0cpe:2.3:a:mozilla:firefox:4.0:beta6:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:::::::*
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta1::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta10::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta11::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta12::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta2::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta3::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta4::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta5::::::
mozilla	firefox	4.0	cpe:2.3:a:mozilla:firefox:4.0:beta6::::::