← Voltar para CVEs
CVE-2012-0473
N/ADescricao
The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 calls the FindMaxElementInSubArray function with incorrect template arguments, which allows remote attackers to obtain sensitive information from video memory via a crafted WebGL.drawElements call.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado4/25/2012
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
mozilla:firefoxmozilla:seamonkeymozilla:thunderbirdmozilla:thunderbird_esr
Fraquezas (CWE)
CWE-189
Referencias
http://secunia.com/advisories/48972(cve@mitre.org)
http://secunia.com/advisories/49047(cve@mitre.org)
http://secunia.com/advisories/49055(cve@mitre.org)
http://www.securityfocus.com/bid/53231(cve@mitre.org)
https://bugzilla.mozilla.org/show_bug.cgi?id=743475(cve@mitre.org)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16113(cve@mitre.org)
http://secunia.com/advisories/48972(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/49047(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/49055(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2012:066(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2012:081(af854a3a-2127-422b-91ae-364da2661108)
http://www.mozilla.org/security/announce/2012/mfsa2012-26.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/53231(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.mozilla.org/show_bug.cgi?id=743475(af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16113(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.