10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.068 Low
EPSS
Percentile
93.9%
The Mozilla Project reports:
MFSA 2012-91 Miscellaneous memory safety hazards (rv:17.0/
rv:10.0.11)
MFSA 2012-92 Buffer overflow while rendering GIF images
MFSA 2012-93 evalInSanbox location context incorrectly applied
MFSA 2012-94 Crash when combining SVG text on path with CSS
MFSA 2012-95 Javascript: URLs run in privileged context on New Tab
page
MFSA 2012-96 Memory corruption in str_unescape
MFSA 2012-97 XMLHttpRequest inherits incorrect principal within
sandbox
MFSA 2012-98 Firefox installer DLL hijacking
MFSA 2012-99 XrayWrappers exposes chrome-only properties when not
in chrome compartment
MFSA 2012-100 Improper security filtering for cross-origin
wrappers
MFSA 2012-101 Improper character decoding in HZ-GB-2312 charset
MFSA 2012-102 Script entered into Developer Toolbar runs with
chrome privileges
MFSA 2012-103 Frames can shadow top.location
MFSA 2012-104 CSS and HTML injection through Style Inspector
MFSA 2012-105 Use-after-free and buffer overflow issues found
MFSA 2012-106 Use-after-free, buffer overflow, and memory
corruption issues found using Address Sanitizer
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | firefox | < 17.0,1 | UNKNOWN |
FreeBSD | any | noarch | linux-firefox | < 10.0.11,1 | UNKNOWN |
FreeBSD | any | noarch | linux-seamonkey | < 2.14 | UNKNOWN |
FreeBSD | any | noarch | linux-thunderbird | < 10.0.11 | UNKNOWN |
FreeBSD | any | noarch | seamonkey | < 2.14 | UNKNOWN |
FreeBSD | any | noarch | thunderbird | < 17.0 | UNKNOWN |
FreeBSD | any | noarch | libxul | < 10.0.11 | UNKNOWN |
www.mozilla.org/security/announce/2012/mfsa2012-100.html
www.mozilla.org/security/announce/2012/mfsa2012-101.html
www.mozilla.org/security/announce/2012/mfsa2012-102.html
www.mozilla.org/security/announce/2012/mfsa2012-103.html
www.mozilla.org/security/announce/2012/mfsa2012-104.html
www.mozilla.org/security/announce/2012/mfsa2012-105.html
www.mozilla.org/security/announce/2012/mfsa2012-106.html
www.mozilla.org/security/announce/2012/mfsa2012-90.html
www.mozilla.org/security/announce/2012/mfsa2012-91.html
www.mozilla.org/security/announce/2012/mfsa2012-92.html
www.mozilla.org/security/announce/2012/mfsa2012-93.html
www.mozilla.org/security/announce/2012/mfsa2012-94.html
www.mozilla.org/security/announce/2012/mfsa2012-95.html
www.mozilla.org/security/announce/2012/mfsa2012-96.html
www.mozilla.org/security/announce/2012/mfsa2012-97.html
www.mozilla.org/security/announce/2012/mfsa2012-98.html
www.mozilla.org/security/announce/2012/mfsa2012-99.html
www.mozilla.org/security/known-vulnerabilities/
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.068 Low
EPSS
Percentile
93.9%