QwikSec

Security Database

CVE

CWE

Training

CVE-2012-1960

Published: Jul 18, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS implementation in Mozilla Firefox 4.x through 13.0, Thunderbird 5.0 through 13.0, and SeaMonkey before 2.11 might allow remote attackers to obtain sensitive information from process memory via a crafted color profile that triggers an out-of-bounds read operation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_SECTRACK

https://bugzilla.mozilla.org/show_bug.cgi?id=761014

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_SECTRACK

SUSE-SU-2012:0895

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

openSUSE-SU-2012:0917

vendor-advisory

x_refsource_SUSE

oval:org.mitre.oval:def:16735

vdb-entry

signature

x_refsource_OVAL

SUSE-SU-2012:0896

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

openSUSE-SU-2012:0899

vendor-advisory

x_refsource_SUSE

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

http://www.mozilla.org/security/announce/2012/mfsa2012-50.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.