CVE-2012-0442
First published: Wed Feb 01 2012(Updated: )
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <3.6.26 | |
| Mozilla Firefox | >=4.0<10.0 | |
| Mozilla SeaMonkey | <2.7 | |
| Mozilla Thunderbird | <3.1.18 | |
| Mozilla Thunderbird | >=5.0<10.0 | |
| Debian GNU/Linux | =5.0 | |
| Debian GNU/Linux | =6.0 | |
| openSUSE | =11.4 | |
| SUSE Linux Enterprise Desktop with Beagle | =10-sp4 | |
| SUSE Linux Enterprise Desktop with Beagle | =11-sp1 | |
| SUSE Linux Enterprise Server | =10-sp4 | |
| SUSE Linux Enterprise Server | =11-sp1 | |
| suse linux enterprise server vmware | =11-sp1 | |
| SUSE Linux Enterprise Software Development Kit | =10-sp4 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00007.html
- http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00011.html
- http://www.debian.org/security/2012/dsa-2400
- http://www.debian.org/security/2012/dsa-2402
- http://www.debian.org/security/2012/dsa-2406
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:013
- http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
- https://bugzilla.mozilla.org/show_bug.cgi?id=693399
- https://bugzilla.mozilla.org/show_bug.cgi?id=705347
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14678
Frequently Asked Questions
What is the severity of CVE-2012-0442?
CVE-2012-0442 has a high severity rating as it can lead to denial of service and potential memory corruption.
How do I fix CVE-2012-0442?
To fix CVE-2012-0442, users should upgrade to the latest supported versions of affected applications such as Mozilla Firefox, Thunderbird, or SeaMonkey.
Which software is affected by CVE-2012-0442?
CVE-2012-0442 affects multiple versions of Mozilla Firefox, Thunderbird, and SeaMonkey prior to their respective patched releases.
Can CVE-2012-0442 be exploited remotely?
Yes, CVE-2012-0442 can be exploited remotely by an attacker to cause application crashes or execute arbitrary code.
What are the potential impacts of CVE-2012-0442?
The potential impacts of CVE-2012-0442 include memory corruption, application crashes, and possibly executing unauthorized commands.
- agent/type
- agent/remedy
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mozilla
- canonical/mozilla firefox
- version/mozilla firefox/4.0
- canonical/mozilla seamonkey
- canonical/mozilla thunderbird
- version/mozilla thunderbird/5.0
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/5.0
- version/debian gnu/linux/6.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/10-sp4
- version/suse linux enterprise desktop with beagle/11-sp1
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp4
- version/suse linux enterprise server/11-sp1
- canonical/suse linux enterprise server vmware
- version/suse linux enterprise server vmware/11-sp1
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/10-sp4
- version/suse linux enterprise software development kit/11-sp1