CVE-2018-12393
Vulnerability Summary
Timeline
Description
A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF-16 representation could result in allocating a buffer too small for the conversion. This leads to a possible out-of-bounds write. *Note: 64-bit builds are not vulnerable to this issue.*. This vulnerability affects Firefox < 63, Firefox ESR < 60.3, and Thunderbird < 60.3.
CVSS Metrics
- v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS Trends
Current EPSS score: 2.99%• Percentile: 87%
Techniques & Countermeasures
- CWE-190•Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.
- CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
Affected Systems
- canonical•ubuntu_linux
14.04 | 16.04 | 18.04 | 18.10
- debian•debian_linux
8.0 | 9.0
- mozilla•firefox
< 63.0 | ≥ unspecified, < 63
- mozilla•firefox_esr
< 60.3 | ≥ unspecified, < 60.3
- mozilla•thunderbird
< 60.3 | ≥ unspecified, < 60.3
- redhat•enterprise_linux_desktop
6.0 | 7.0
- redhat•enterprise_linux_server
6.0 | 7.0
- redhat•enterprise_linux_server_aus
7.6
- redhat•enterprise_linux_server_eus
7.6
- redhat•enterprise_linux_server_tus
7.6
- redhat•enterprise_linux_workstation
6.0 | 7.0
References (19)
- http://www.securityfocus.com/bid/105769
- https://www.debian.org/security/2018/dsa-4324
- https://www.mozilla.org/security/advisories/mfsa2018-28/
- https://www.mozilla.org/security/advisories/mfsa2018-26/
- https://lists.debian.org/debian-lts-announce/2018/11/msg00011.html
- https://security.gentoo.org/glsa/201811-04
- https://security.gentoo.org/glsa/201811-13
- https://www.debian.org/security/2018/dsa-4337
- https://www.mozilla.org/security/advisories/mfsa2018-27/
- https://access.redhat.com/errata/RHSA-2018:3005
- http://www.securityfocus.com/bid/105718
- https://bugzilla.mozilla.org/show_bug.cgi?id=1495011
- https://access.redhat.com/errata/RHSA-2018:3006
- https://usn.ubuntu.com/3801-1/
- https://usn.ubuntu.com/3868-1/
- https://access.redhat.com/errata/RHSA-2018:3532
- https://access.redhat.com/errata/RHSA-2018:3531
- https://lists.debian.org/debian-lts-announce/2018/11/msg00008.html
- http://www.securitytracker.com/id/1041944