Information Disclosure Vulnerability in Mozilla Firefox, Thunderbird, and SeaMonkey

Information Disclosure Vulnerability in Mozilla Firefox, Thunderbird, and SeaMonkey

CVE-2012-0447 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize data for image/vnd.microsoft.icon images, which allows remote attackers to obtain potentially sensitive information by reading a PNG image that was created through conversion from an ICO image.

Learn more about our Web Application Penetration Testing UK.