CVE-2012-3982
First published: Wed Oct 10 2012(Updated: )
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | <10.0.8 | |
| Mozilla Thunderbird | <10.0.8 | |
| Firefox | <16.0 | |
| Thunderbird | <16.0 | |
| Mozilla SeaMonkey | <2.13 | |
| Ubuntu | =10.04 | |
| Ubuntu | =11.04 | |
| Ubuntu | =11.10 | |
| Ubuntu | =12.04 | |
| Red Hat Enterprise Linux Desktop | =5.0 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server EUS | =6.3 | |
| Red Hat Enterprise Linux Server | =5.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =5.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 | |
| Debian Linux | =6.0 | |
| SUSE Linux Enterprise Desktop | =10-sp4 | |
| SUSE Linux Enterprise Desktop | =11-sp3 | |
| SUSE Linux Enterprise Software Development Kit | =10-sp4 | |
| SUSE Linux Enterprise Server | =10-sp4 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| Firefox ESR | <10.0.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00010.html
- http://rhn.redhat.com/errata/RHSA-2012-1351.html
- http://secunia.com/advisories/50856
- http://secunia.com/advisories/50892
- http://secunia.com/advisories/50904
- http://secunia.com/advisories/50935
- http://secunia.com/advisories/50936
- http://secunia.com/advisories/50984
- http://secunia.com/advisories/51181
- http://secunia.com/advisories/55318
- http://www.debian.org/security/2012/dsa-2565
- http://www.debian.org/security/2012/dsa-2569
- http://www.debian.org/security/2012/dsa-2572
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:163
- http://www.mozilla.org/security/announce/2012/mfsa2012-74.html
- http://www.securityfocus.com/bid/55924
- http://www.ubuntu.com/usn/USN-1611-1
- https://bugzilla.mozilla.org/show_bug.cgi?id=783502
- https://bugzilla.mozilla.org/show_bug.cgi?id=790856
- https://bugzilla.mozilla.org/show_bug.cgi?id=794025
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16612
Frequently Asked Questions
What is the severity of CVE-2012-3982?
CVE-2012-3982 has been classified as a denial of service vulnerability that could lead to memory corruption and application crashes.
How do I fix CVE-2012-3982?
To fix CVE-2012-3982, update your Mozilla Firefox, Thunderbird, or SeaMonkey to the latest versions released after the vulnerabilities were addressed.
Which versions are affected by CVE-2012-3982?
CVE-2012-3982 affects Mozilla Firefox versions before 16.0, Thunderbird before 16.0, SeaMonkey before 2.13, and several ESR versions before 10.0.8.
Can CVE-2012-3982 be exploited remotely?
Yes, CVE-2012-3982 allows remote attackers to exploit the vulnerabilities and potentially cause denial of service.
What type of impact does CVE-2012-3982 have on systems?
The impact of CVE-2012-3982 primarily includes application crashes and service interruptions due to memory corruption.
- agent/type
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- agent/event
- agent/last-modified-date
- agent/author
- agent/source
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/mozilla
- canonical/firefox
- canonical/mozilla thunderbird
- canonical/thunderbird
- canonical/mozilla seamonkey
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/10.04
- version/ubuntu/11.04
- version/ubuntu/11.10
- version/ubuntu/12.04
- vendor/redhat
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/5.0
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/6.3
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/5.0
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/5.0
- version/red hat enterprise linux workstation/6.0
- vendor/debian
- canonical/debian linux
- version/debian linux/6.0
- vendor/suse
- canonical/suse linux enterprise desktop
- version/suse linux enterprise desktop/10-sp4
- version/suse linux enterprise desktop/11-sp3
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/10-sp4
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp4
- version/suse linux enterprise server/11-sp3
- canonical/firefox esr