CyberSec.Space Logo
CVEブラウザに戻る

CVE-2012-4190

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile39.99th
Published2012年10月12日
Last Modified2026年4月29日

Vulnerability Description

The FT2FontEntry::CreateFontEntry function in FreeType, as used in the Android build of Mozilla Firefox before 16.0.1 on CyanogenMod 10, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.

Affected Platforms (CPE)

📦
Mozilla

Firefox

<= 16.0
📦
Mozilla

Firefox

= 0.1
📦
Mozilla

Firefox

= 0.2
📦
Mozilla

Firefox

= 0.3
📦
Mozilla

Firefox

= 0.4
📦
Mozilla

Firefox

= 0.5
📦
Mozilla

Firefox

= 0.6
📦
Mozilla

Firefox

= 0.6.1
📦
Mozilla

Firefox

= 0.7
📦
Mozilla

Firefox

= 0.7.1
📦
Mozilla

Firefox

= 0.8
📦
Mozilla

Firefox

= 0.9
📦
Mozilla

Firefox

= 0.9
📦
Mozilla

Firefox

= 0.9.1
📦
Mozilla

Firefox

= 0.9.2
📦
Mozilla

Firefox

= 0.9.3
📦
Mozilla

Firefox

= 0.10
📦
Mozilla

Firefox

= 0.10.1
📦
Mozilla

Firefox

= 1.0
📦
Mozilla

Firefox

= 1.0
📦
Mozilla

Firefox

= 1.0.1
📦
Mozilla

Firefox

= 1.0.2
📦
Mozilla

Firefox

= 1.0.3
📦
Mozilla

Firefox

= 1.0.4
📦
Mozilla

Firefox

= 1.0.5
📦
Mozilla

Firefox

= 1.0.6
📦
Mozilla

Firefox

= 1.0.7
📦
Mozilla

Firefox

= 1.0.8
📦
Mozilla

Firefox

= 1.4.1
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5
📦
Mozilla

Firefox

= 1.5.0.1
📦
Mozilla

Firefox

= 1.5.0.2
📦
Mozilla

Firefox

= 1.5.0.3
📦
Mozilla

Firefox

= 1.5.0.4
📦
Mozilla

Firefox

= 1.5.0.5
📦
Mozilla

Firefox

= 1.5.0.6
📦
Mozilla

Firefox

= 1.5.0.7
📦
Mozilla

Firefox

= 1.5.0.8
📦
Mozilla

Firefox

= 1.5.0.9
📦
Mozilla

Firefox

= 1.5.0.10
📦
Mozilla

Firefox

= 1.5.0.11
📦
Mozilla

Firefox

= 1.5.0.12
📦
Mozilla

Firefox

= 1.5.1
📦
Mozilla

Firefox

= 1.5.2
📦
Mozilla

Firefox

= 1.5.3
📦
Mozilla

Firefox

= 1.5.4
📦
Mozilla

Firefox

= 1.5.5
📦
Mozilla

Firefox

= 1.5.6
📦
Mozilla

Firefox

= 1.5.7
📦
Mozilla

Firefox

= 1.5.8
📦
Mozilla

Firefox

= 1.8
📦
Mozilla

Firefox

= 2.0
📦
Mozilla

Firefox

= 2.0.0.1
📦
Mozilla

Firefox

= 2.0.0.2
📦
Mozilla

Firefox

= 2.0.0.3
📦
Mozilla

Firefox

= 2.0.0.4
📦
Mozilla

Firefox

= 2.0.0.5
📦
Mozilla

Firefox

= 2.0.0.6
📦
Mozilla

Firefox

= 2.0.0.7
📦
Mozilla

Firefox

= 2.0.0.8
📦
Mozilla

Firefox

= 2.0.0.9
📦
Mozilla

Firefox

= 2.0.0.10
📦
Mozilla

Firefox

= 2.0.0.11
📦
Mozilla

Firefox

= 2.0.0.12
📦
Mozilla

Firefox

= 2.0.0.13
📦
Mozilla

Firefox

= 2.0.0.14
📦
Mozilla

Firefox

= 2.0.0.15
📦
Mozilla

Firefox

= 2.0.0.16
📦
Mozilla

Firefox

= 2.0.0.17
📦
Mozilla

Firefox

= 2.0.0.18
📦
Mozilla

Firefox

= 2.0.0.19
📦
Mozilla

Firefox

= 2.0.0.20
📦
Mozilla

Firefox

= 3.0
📦
Mozilla

Firefox

= 3.0.1
📦
Mozilla

Firefox

= 3.0.2
📦
Mozilla

Firefox

= 3.0.3
📦
Mozilla

Firefox

= 3.0.4
📦
Mozilla

Firefox

= 3.0.5
📦
Mozilla

Firefox

= 3.0.6
📦
Mozilla

Firefox

= 3.0.7
📦
Mozilla

Firefox

= 3.0.8
📦
Mozilla

Firefox

= 3.0.9
📦
Mozilla

Firefox

= 3.0.10
📦
Mozilla

Firefox

= 3.0.11
📦
Mozilla

Firefox

= 3.0.12
📦
Mozilla

Firefox

= 3.0.13
📦
Mozilla

Firefox

= 3.0.14
📦
Mozilla

Firefox

= 3.0.15
📦
Mozilla

Firefox

= 3.0.16
📦
Mozilla

Firefox

= 3.0.17
📦
Mozilla

Firefox

= 3.5
📦
Mozilla

Firefox

= 3.5.1
📦
Mozilla

Firefox

= 3.5.2
📦
Mozilla

Firefox

= 3.5.3
📦
Mozilla

Firefox

= 3.5.4
📦
Mozilla

Firefox

= 3.5.5
📦
Mozilla

Firefox

= 3.5.6
📦
Mozilla

Firefox

= 3.5.7
📦
Mozilla

Firefox

= 3.5.8
📦
Mozilla

Firefox

= 3.5.9
📦
Mozilla

Firefox

= 3.5.10
📦
Mozilla

Firefox

= 3.5.11
📦
Mozilla

Firefox

= 3.5.12
📦
Mozilla

Firefox

= 3.5.13
📦
Mozilla

Firefox

= 3.5.14
📦
Mozilla

Firefox

= 3.5.15
📦
Mozilla

Firefox

= 3.6
📦
Mozilla

Firefox

= 3.6.2
📦
Mozilla

Firefox

= 3.6.3
📦
Mozilla

Firefox

= 3.6.4
📦
Mozilla

Firefox

= 3.6.6
📦
Mozilla

Firefox

= 3.6.7
📦
Mozilla

Firefox

= 3.6.8
📦
Mozilla

Firefox

= 3.6.9
📦
Mozilla

Firefox

= 3.6.10
📦
Mozilla

Firefox

= 3.6.11
📦
Mozilla

Firefox

= 3.6.12
📦
Mozilla

Firefox

= 3.6.13
📦
Mozilla

Firefox

= 3.6.14
📦
Mozilla

Firefox

= 3.6.15
📦
Mozilla

Firefox

= 3.6.16
📦
Mozilla

Firefox

= 3.6.17
📦
Mozilla

Firefox

= 3.6.18
📦
Mozilla

Firefox

= 3.6.19
📦
Mozilla

Firefox

= 3.6.20
📦
Mozilla

Firefox

= 3.6.21
📦
Mozilla

Firefox

= 3.6.22
📦
Mozilla

Firefox

= 3.6.23
📦
Mozilla

Firefox

= 3.6.24
📦
Mozilla

Firefox

= 3.6.25
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0
📦
Mozilla

Firefox

= 4.0.1
📦
Mozilla

Firefox

= 5.0
📦
Mozilla

Firefox

= 5.0.1
📦
Mozilla

Firefox

= 6.0
📦
Mozilla

Firefox

= 6.0.1
📦
Mozilla

Firefox

= 6.0.2
📦
Mozilla

Firefox

= 7.0
📦
Mozilla

Firefox

= 7.0.1
📦
Mozilla

Firefox

= 8.0
📦
Mozilla

Firefox

= 8.0.1
📦
Mozilla

Firefox

= 9.0
📦
Mozilla

Firefox

= 9.0.1
📦
Mozilla

Firefox

= 10.0
📦
Mozilla

Firefox

= 10.0.1
📦
Mozilla

Firefox

= 10.0.2
📦
Mozilla

Firefox

= 11.0
📦
Mozilla

Firefox

= 12.0
📦
Mozilla

Firefox

= 12.0
📦
Mozilla

Firefox

= 13.0
📦
Mozilla

Firefox

= 13.0.1
📦
Mozilla

Firefox

= 14.0
📦
Mozilla

Firefox

= 14.0.1
📦
Mozilla

Firefox

= 15.0
📦
Mozilla

Firefox

= 15.0.1
💻
Cyanogenmod

Cyanogenmod

= 10

References & Advisories

🔗 http://www.mozilla.org/security/announce/2012/mfsa2012-88.html
🔗 http://www.securitytracker.com/id?1027653
🔗 https://bugzilla.mozilla.org/show_bug.cgi?id=790139
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/79208
🔗 http://www.mozilla.org/security/announce/2012/mfsa2012-88.html
🔗 http://www.securitytracker.com/id?1027653
🔗 https://bugzilla.mozilla.org/show_bug.cgi?id=790139
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/79208

関連する脆弱性情報

CVE-2019-1170810.0

Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the no...

CVE-2019-2513610.0

A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and ...

CVE-2018-1850510.0

An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication betwee...

CVE-2020-1238810.0

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this iss...