Memory Corruption and Arbitrary Code Execution Vulnerability in Mozilla Firefox ESR 10.x and Thunderbird ESR 10.x

Memory Corruption and Arbitrary Code Execution Vulnerability in Mozilla Firefox ESR 10.x and Thunderbird ESR 10.x

CVE-2012-1939 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ESR 10.x before 10.0.5 does not properly determine data types, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via crafted JavaScript code.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.