Lucene search

K

MitreCVELIST:CVE-2012-3970

HistoryAug 29, 2012 - 10:00 a.m.

CVE-2012-3970

2012-08-2910:00:00

mitre

www.cve.org

9.4 High

AI Score

Confidence

High

0.126 Low

EPSS

Percentile

95.5%

Use-after-free vulnerability in the nsTArray_base::Length function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving movement of a requiredFeatures attribute from one SVG document to another.

References

lists.opensuse.org/opensuse-security-announce/2012-08/msg00028.html

lists.opensuse.org/opensuse-security-announce/2012-09/msg00011.html

lists.opensuse.org/opensuse-security-announce/2012-09/msg00014.html

rhn.redhat.com/errata/RHSA-2012-1210.html

rhn.redhat.com/errata/RHSA-2012-1211.html

www.mozilla.org/security/announce/2012/mfsa2012-63.html

www.securityfocus.com/bid/55278

www.ubuntu.com/usn/USN-1548-1

www.ubuntu.com/usn/USN-1548-2

www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

bugzilla.mozilla.org/show_bug.cgi?id=760996

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16876

9.4 High

AI Score

Confidence

High

0.126 Low

EPSS

Percentile

95.5%

Related for CVELIST:CVE-2012-3970

cve1 ubuntucve1 prion1 nvd1 openvas40 mozilla1 nessus36 veracode19 oraclelinux2 centos2 redhat2 suse5 ubuntu4 securityvulns1 freebsd1 ibm2 gentoo1