CVE-2012-1950 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:N/I:P/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 83%

Vendor	Product	Version
mozilla	firefox	4.0
mozilla	firefox	4.0:beta1
mozilla	firefox	4.0:beta10
mozilla	firefox	4.0:beta11
mozilla	firefox	4.0:beta12
mozilla	firefox	4.0:beta2
mozilla	firefox	4.0:beta3
mozilla	firefox	4.0:beta4
mozilla	firefox	4.0:beta5
mozilla	firefox	4.0:beta6
mozilla	firefox	4.0:beta7
mozilla	firefox	4.0:beta8
mozilla	firefox	4.0:beta9
mozilla	firefox	4.0.1
mozilla	firefox	5.0
mozilla	firefox	5.0.1
mozilla	firefox	6.0
mozilla	firefox	6.0.1
mozilla	firefox	6.0.2
mozilla	firefox	7.0
mozilla	firefox	7.0.1
mozilla	firefox	8.0
mozilla	firefox	8.0.1
mozilla	firefox	9.0
mozilla	firefox	9.0.1
mozilla	firefox	11.0
mozilla	firefox	12.0
mozilla	firefox	12.0:beta6
mozilla	firefox	13.0
mozilla	firefox	10.0
mozilla	firefox	10.0.1
mozilla	firefox	10.0.2
mozilla	firefox	10.0.3
mozilla	firefox	10.0.4
mozilla	firefox	10.0.5

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

firefox

saucy	not-affected
raring	not-affected
quantal	not-affected
precise	Fixed 14.0.1+build1-0ubuntu0.12.04.1 released
oneiric	Fixed 14.0.1+build1-0ubuntu0.11.10.1 released
natty	Fixed 14.0.1+build1-0ubuntu0.11.04.1 released
lucid	Fixed 14.0.1+build1-0ubuntu0.10.04.1 released
hardy	ignored

seamonkey

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	ignored
natty	ignored
lucid	ignored
hardy	ignored

thunderbird

saucy	not-affected
raring	not-affected
quantal	not-affected
precise	not-affected
oneiric	not-affected
natty	not-affected
lucid	not-affected
hardy	ignored

xulrunner-1.9.2

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	ignored
lucid	ignored
hardy	ignored

xulrunner-2.0

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	ignored
lucid	dne
hardy	dne

References

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00011.html

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00013.html

http://osvdb.org/84008

http://rhn.redhat.com/errata/RHSA-2012-1088.html

http://secunia.com/advisories/49964

http://secunia.com/advisories/49965

http://secunia.com/advisories/49972

http://secunia.com/advisories/49979

http://secunia.com/advisories/49992

http://www.debian.org/security/2012/dsa-2514

http://www.debian.org/security/2012/dsa-2528

http://www.mozilla.org/security/announce/2012/mfsa2012-43.html

http://www.securitytracker.com/id?1027256

http://www.ubuntu.com/usn/USN-1509-1

http://www.ubuntu.com/usn/USN-1509-2

https://bugzilla.mozilla.org/show_bug.cgi?id=724247

https://bugzilla.mozilla.org/show_bug.cgi?id=724599

https://bugzilla.mozilla.org/show_bug.cgi?id=725611

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16970

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00011.html

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00013.html

http://osvdb.org/84008

http://rhn.redhat.com/errata/RHSA-2012-1088.html

http://secunia.com/advisories/49964

http://secunia.com/advisories/49965

http://secunia.com/advisories/49972

http://secunia.com/advisories/49979

http://secunia.com/advisories/49992

http://www.debian.org/security/2012/dsa-2514

http://www.debian.org/security/2012/dsa-2528

http://www.mozilla.org/security/announce/2012/mfsa2012-43.html

http://www.securitytracker.com/id?1027256

http://www.ubuntu.com/usn/USN-1509-1

http://www.ubuntu.com/usn/USN-1509-2

https://bugzilla.mozilla.org/show_bug.cgi?id=724247

https://bugzilla.mozilla.org/show_bug.cgi?id=724599

https://bugzilla.mozilla.org/show_bug.cgi?id=725611

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16970