CVE-2012-1937
Mozilla Firefox 4.x-12.0 and Firefox ESR 10.x < 10.0.5 - Remote Code Execution or Denial of Service
Title source: llmDescription
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
References (15)
Core 15
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=643967
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=723465
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=745494
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2012:088
Vendor Advisory x_refsource_confirm
http://www.mozilla.org/security/announce/2012/mfsa2012-34.html
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17055
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=745254
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2012/dsa-2488
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2012/dsa-2499
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-0710.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00015.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2012/dsa-2489
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-0715.html
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=745580
Scores
EPSS
0.0474
EPSS Percentile
90.9%
Details
Status
published
Products (33)
mozilla/firefox
4.0 (13 CPE variants)
mozilla/firefox
4.0.1
mozilla/firefox
5.0
mozilla/firefox
5.0.1
mozilla/firefox
6.0
mozilla/firefox
6.0.1
mozilla/firefox
6.0.2
mozilla/firefox
7.0
mozilla/firefox
7.0.1
mozilla/firefox
8.0
... and 23 more
Published
Jun 05, 2012
Tracked Since
Feb 18, 2026