← voltar
CVE-2012-0469

CVE-2012-0469

EPSS 7.4%
Use-after-free vulnerability in the mozilla::dom::indexedDB::IDBKeyRange::cycleCollection::Trace function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote attackers to execute arbitrary code via vectors related to crafted IndexedDB data.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugzilla.mozilla.org/show_bug.cgi?id=738985http://secunia.com/advisories/48972http://secunia.com/advisories/49047http://secunia.com/advisories/49055https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16734http://www.mandriva.com/security/advisories?name=MDVSA-2012:066http://www.mandriva.com/security/advisories?name=MDVSA-2012:081http://www.mozilla.org/security/announce/2012/mfsa2012-22.htmlhttp://www.securityfocus.com/bid/53220