Mozilla Firefox/Thunderbird/SeaMonkey CVE-2012-4202 Buffer Overflow Vulnerability

Mozilla Firefox, SeaMonkey, and Thunderbird are prone to a buffer-overflow vulnerability that may allow arbitrary code execution.

Successful exploits may allow an attacker to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.

This issue is fixed in:

Firefox 17.0
Firefox ESR 10.0.11
Thunderbird 17.0
Thunderbird ESR 10.0.11
SeaMonkey 2.14

Note: This issue was previously discussed in BID 56607 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2012-91 through -106 Multiple Vulnerabilities), but has been moved to its own record to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus