CVE-2012-0456

CVSS V2 Medium 5 CVSS V3 None
Description
The SVG Filters implementation in Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 might allow remote attackers to obtain sensitive information from process memory via vectors that trigger an out-of-bounds read.
Overview
  • CVE ID
  • CVE-2012-0456
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Modified
  • Published Version
  • 2012-03-14T19:55:01
  • Last Modified Date
  • 2018-01-18T02:29:04
Weakness Enumerations
CWE URL
CWE-200 http://cwe.mitre.org/data/definitions/200.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* 1 OR 3.6.27
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* 1 OR 4.0 10.0
cpe:2.3:a:mozilla:firefox_esr:10.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:firefox_esr:10.0.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:firefox_esr:10.0.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* 1 OR 1.0 3.1.19
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* 1 OR 10.0
cpe:2.3:a:mozilla:thunderbird_esr:10.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:thunderbird_esr:10.0.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:thunderbird_esr:10.0.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.14:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.16:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.17:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.18:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.1.19:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.5.0.8:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.5.0.9:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:1.5.0.10:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0:rc2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.5:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.6:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.8:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.9:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.10:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.11:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.12:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.13:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.0.14:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.1:rc2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.2:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.2:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.2:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.3.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.4:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.4:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.4:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.4:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.4.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.5:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.5:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.5:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.5:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.5:beta4:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6:beta4:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.6.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:beta1:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:beta2:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:beta3:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:beta4:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7:beta5:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:mozilla:seamonkey:2.7.2:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:P/I:N/A:N
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • PARTIAL
  • Integrity Impact
  • NONE
  • Availability Impact
  • NONE
  • Base Score
  • 5
  • Severity
  • MEDIUM
  • Exploitability Score
  • 10
  • Impact Score
  • 2.9
References
Reference URL Reference Tags
http://www.mozilla.org/security/announce/2012/mfsa2012-14.html Third Party Advisory Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=711653 Issue Tracking Vendor Advisory
http://www.ubuntu.com/usn/USN-1400-3 Third Party Advisory
http://www.debian.org/security/2012/dsa-2433 Third Party Advisory
http://secunia.com/advisories/48495 Third Party Advisory
http://secunia.com/advisories/48513 Third Party Advisory
http://secunia.com/advisories/48629 Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html Third Party Advisory
http://www.ubuntu.com/usn/USN-1400-4 Third Party Advisory
http://www.ubuntu.com/usn/USN-1400-5 Third Party Advisory
http://www.ubuntu.com/usn/USN-1401-1 Third Party Advisory
http://secunia.com/advisories/48496 Third Party Advisory
http://www.ubuntu.com/usn/USN-1400-2 Third Party Advisory
http://secunia.com/advisories/48553 Third Party Advisory
http://secunia.com/advisories/48624 Third Party Advisory
http://secunia.com/advisories/48561 Third Party Advisory
http://secunia.com/advisories/48823 Third Party Advisory
http://secunia.com/advisories/48920 Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15007 Third Party Advisory
http://www.ubuntu.com/usn/USN-1400-1
http://www.mandriva.com/security/advisories?name=MDVSA-2012:031
http://www.securitytracker.com/id?1026804
http://secunia.com/advisories/48402
http://secunia.com/advisories/48359
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html
http://www.securitytracker.com/id?1026803
http://www.securitytracker.com/id?1026801
http://secunia.com/advisories/48414
http://rhn.redhat.com/errata/RHSA-2012-0388.html
http://rhn.redhat.com/errata/RHSA-2012-0387.html
http://www.mandriva.com/security/advisories?name=MDVSA-2012:032
http://www.debian.org/security/2012/dsa-2458
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2012-0456
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0456
History
Created Old Value New Value Data Type Notes
2022-05-10 18:49:55 Added to TrackCVE