Mozilla Firefox CVE-2012-4206 Arbitrary Code Execution Vulnerability

Mozilla Firefox is prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network shared location that contains a specially crafted Dynamic Linked Library (DLL) file.

Note: This issue was previously covered in BID 56607 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2012-91 through -106 Multiple Vulnerabilities), but has been assigned its own record to better document it.

This issue is fixed in:

Firefox 17.0
Firefox ESR 10.0.11


 

Privacy Statement
Copyright 2010, SecurityFocus