CVE-2012-3979

Firefox < 15.0 - Remote Code Execution via JavaScript dump Function

Title source: llm
STIX 2.1

Description

Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the __android_log_print function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/55344
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=769265

Scores

EPSS 0.0188
EPSS Percentile 77.2%

Details

Status published
Products (46)
google/android
mozilla/firefox 0.1
mozilla/firefox 0.2
mozilla/firefox 0.3
mozilla/firefox 0.4
mozilla/firefox 0.5
mozilla/firefox 0.6
mozilla/firefox 0.6.1
mozilla/firefox 0.7
mozilla/firefox 0.7.1
... and 36 more
Published Aug 29, 2012
Tracked Since Feb 18, 2026