CVE-2012-4186

Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote attackers to execute arbitrary code via unspecified vectors.

Published date
2012-10-10T17:55Z
Last modification date
2020-08-11T13:43Z
Assigner
cve@mitre.org
Problem type
CWE-119
NameURLSourceTags
http://www.mozilla.org/security/announce/2012/mfsa2012-86.htmlhttp://www.mozilla.org/security/announce/2012/mfsa2012-86.htmlCONFIRMVendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=785967https://bugzilla.mozilla.org/show_bug.cgi?id=785967CONFIRMIssue Tracking
RHSA-2012:1351http://rhn.redhat.com/errata/RHSA-2012-1351.htmlREDHATThird Party Advisory
DSA-2569http://www.debian.org/security/2012/dsa-2569DEBIANThird Party Advisory
DSA-2565http://www.debian.org/security/2012/dsa-2565DEBIANThird Party Advisory
USN-1611-1http://www.ubuntu.com/usn/USN-1611-1UBUNTUThird Party Advisory
SUSE-SU-2012:1351http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00010.htmlSUSEMailing List, Third Party Advisory
DSA-2572http://www.debian.org/security/2012/dsa-2572DEBIANThird Party Advisory
86117http://osvdb.org/86117OSVDBBroken Link
MDVSA-2012:163http://www.mandriva.com/security/advisories?name=MDVSA-2012:163MANDRIVAThird Party Advisory
50936http://secunia.com/advisories/50936SECUNIAThird Party Advisory
50935http://secunia.com/advisories/50935SECUNIAThird Party Advisory
50856http://secunia.com/advisories/50856SECUNIAThird Party Advisory
50984http://secunia.com/advisories/50984SECUNIAThird Party Advisory
50904http://secunia.com/advisories/50904SECUNIAThird Party Advisory
50892http://secunia.com/advisories/50892SECUNIAThird Party Advisory
51181http://secunia.com/advisories/51181SECUNIAThird Party Advisory
55318http://secunia.com/advisories/55318SECUNIAThird Party Advisory
firefox-nswavereader-bo(79163)https://exchange.xforce.ibmcloud.com/vulnerabilities/79163XFThird Party Advisory, VDB Entry
oval:org.mitre.oval:def:16193https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16193OVALThird Party Advisory