[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-5829Date: (C)2012-11-21   (M)2024-03-27


Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECUNIA-51359
SECUNIA-51360
SECUNIA-51369
SECUNIA-51370
SECUNIA-51381
SECUNIA-51434
SECUNIA-51439
SECUNIA-51440
BID-56636
OSVDB-87608
DSA-2583
DSA-2584
DSA-2588
IAVM:2012-A-0190
IAVM:2013-A-0009
MDVSA-2012:173
RHSA-2012:1482
RHSA-2012:1483
SUSE-SU-2012:1592
SUSE-SU-2013:0048
SUSE-SU-2013:0049
USN-1636-1
USN-1638-1
USN-1638-2
USN-1638-3
USN-1681-1
USN-1681-2
USN-1681-4
firefox-onexposeevent-bo(80195)
http://www.mozilla.org/security/announce/2012/mfsa2012-105.html
http://www.mozilla.org/security/announce/2013/mfsa2013-02.html
https://bugzilla.mozilla.org/show_bug.cgi?id=792305
openSUSE-SU-2012:1583
openSUSE-SU-2012:1585
openSUSE-SU-2012:1586
openSUSE-SU-2013:0131
openSUSE-SU-2013:0149
openSUSE-SU-2013:0175
oval:org.mitre.oval:def:16849

CPE    391
cpe:/a:mozilla:firefox:14.0
cpe:/a:mozilla:seamonkey:2.8:beta6
cpe:/a:mozilla:firefox:3.6.20
cpe:/a:mozilla:firefox:3.6.21
...
CWE    1
CWE-119
OVAL    28
oval:org.secpod.oval:def:400476
oval:org.secpod.oval:def:701075
oval:org.secpod.oval:def:701078
oval:org.secpod.oval:def:701076
...

© SecPod Technologies