CVE-2012-0960
Published: 22 November 2012
Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possibly execute arbitrary code via a crafted request.
Priority
Status
Package | Release | Status |
---|---|---|
unity-firefox-extension Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Does not exist
|
|
oneiric |
Does not exist
|
|
precise |
Does not exist
|
|
quantal |
Released
(2.4.1-0ubuntu1.1)
|
|
upstream |
Needs triage
|