Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27609
HistoryFeb 03, 2012 - 12:00 a.m.

Mozilla Foundation Security Advisory 2012-08

2012-02-0300:00:00
vulners.com
14
JSON

Mozilla Foundation Security Advisory 2012-08

Title: Crash with malformed embedded XSLT stylesheets
Impact: Critical
Announced: January 31, 2012
Reporter: Nicolas Gregoire, Aki Helin
Products: Firefox, Thunderbird, SeaMonkey

Fixed in: Firefox 10.0
Firefox 3.6.26
Thunderbird 10.0
Thunderbird 3.1.18
SeaMonkey 2.7
Description

Security researchers Nicolas Gregoire and Aki Helin independently reported that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to a memory corruption. While there is no evidence that this is directly exploitable, there is a possibility of remote code execution.

References

Researcher Bug Reports
CVE-2012-0449

Related

mozilla 1
veracode 1
ubuntucve 1
cve 1
prion 1
openvas 44
nessus 48
debian 3
redhat 2
osv 3
oraclelinux 2
centos 2
suse 4
ubuntu 6
freebsd 1
securityvulns 1
kitploit 1
gentoo 1
mozilla
mozilla
Crash with malformed embedded XSLT stylesheets — Mozilla
2012-01-31 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:07:21
ubuntucve
ubuntucve
CVE-2012-0449
2012-02-01 00:00:00
cve
cve
CVE-2012-0449
2012-02-01 16:55:00
prion
prion
Memory corruption
2012-02-01 16:55:00
openvas
openvas
CentOS Update for thunderbird CESA-2012:0080 centos6
2012-07-30 00:00:00
RedHat Update for thunderbird RHSA-2012:0080-01
2012-07-09 00:00:00
CentOS Update for thunderbird CESA-2012:0080 centos6
2012-07-30 00:00:00
nessus
nessus
CentOS 6 : thunderbird (CESA-2012:0080)
2012-02-02 00:00:00
Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20120131)
2012-08-01 00:00:00
Debian DSA-2406-1 : icedove - several vulnerabilities
2012-02-10 00:00:00
debian
debian
[SECURITY] [DSA 2400-1] iceweasel security update
2012-02-02 19:52:15
[SECURITY] [DSA 2406-1] icedove security update
2012-02-09 12:07:23
[SECURITY] [DSA 2402-1] iceape security update
2012-02-02 19:53:30
redhat
redhat
(RHSA-2012:0080) Critical: thunderbird security update
2012-01-31 00:00:00
(RHSA-2012:0079) Critical: firefox security update
2012-01-31 00:00:00
osv
osv
iceape - several
2012-02-02 00:00:00
icedove - several
2012-02-09 00:00:00
iceweasel - several
2012-02-02 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-01-31 00:00:00
firefox security update
2012-01-31 00:00:00
centos
centos
thunderbird security update
2012-02-01 11:56:07
firefox, xulrunner security update
2012-02-01 03:34:27
suse
suse
Security update for Mozilla XULrunner (important)
2012-02-09 19:07:25
Security update for Mozilla Firefox (important)
2012-02-09 19:10:22
MozillaFirefox: Version 10 (important)
2012-02-09 19:10:49
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-02-08 00:00:00
Xulrunnner vulnerabilities
2012-02-08 00:00:00
Firefox vulnerabilities
2012-02-03 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-01-31 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-02-03 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for SECURITYVULNS:DOC:27609
mozilla1veracode1ubuntucve1cve1prion1openvas44nessus48debian3redhat2osv3oraclelinux2centos2suse4ubuntu6freebsd1securityvulns1kitploit1gentoo1