VIR Vulnerability Intelligence Relay

CVE-2012-4190

critical
Published 2012-10-12 · Modified 2026-04-29
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

The FT2FontEntry::CreateFontEntry function in FreeType, as used in the Android build of Mozilla Firefox before 16.0.1 on CyanogenMod 10, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://www.mozilla.org/security/announce/2012/mfsa2012-88.html

Application impact
VendorProductVersionsFixed
mozillafirefox{"endIncluding":"16.0"}
mozillafirefox0.1
mozillafirefox0.2
mozillafirefox0.3
mozillafirefox0.4
mozillafirefox0.5
mozillafirefox0.6
mozillafirefox0.6.1
mozillafirefox0.7
mozillafirefox0.7.1
mozillafirefox0.8
mozillafirefox0.9
mozillafirefox0.9.1
mozillafirefox0.9.2
mozillafirefox0.9.3
mozillafirefox0.10
mozillafirefox0.10.1
mozillafirefox1.0
mozillafirefox1.0.1
mozillafirefox1.0.2
mozillafirefox1.0.3
mozillafirefox1.0.4
mozillafirefox1.0.5
mozillafirefox1.0.6
mozillafirefox1.0.7
mozillafirefox1.0.8
mozillafirefox1.4.1
mozillafirefox1.5
mozillafirefox1.5.0.1
mozillafirefox1.5.0.2
mozillafirefox1.5.0.3
mozillafirefox1.5.0.4
mozillafirefox1.5.0.5
mozillafirefox1.5.0.6
mozillafirefox1.5.0.7
mozillafirefox1.5.0.8
mozillafirefox1.5.0.9
mozillafirefox1.5.0.10
mozillafirefox1.5.0.11
mozillafirefox1.5.0.12
mozillafirefox1.5.1
mozillafirefox1.5.2
mozillafirefox1.5.3
mozillafirefox1.5.4
mozillafirefox1.5.5
mozillafirefox1.5.6
mozillafirefox1.5.7
mozillafirefox1.5.8
mozillafirefox1.8
mozillafirefox2.0
mozillafirefox2.0.0.1
mozillafirefox2.0.0.2
mozillafirefox2.0.0.3
mozillafirefox2.0.0.4
mozillafirefox2.0.0.5
mozillafirefox2.0.0.6
mozillafirefox2.0.0.7
mozillafirefox2.0.0.8
mozillafirefox2.0.0.9
mozillafirefox2.0.0.10
mozillafirefox2.0.0.11
mozillafirefox2.0.0.12
mozillafirefox2.0.0.13
mozillafirefox2.0.0.14
mozillafirefox2.0.0.15
mozillafirefox2.0.0.16
mozillafirefox2.0.0.17
mozillafirefox2.0.0.18
mozillafirefox2.0.0.19
mozillafirefox2.0.0.20
mozillafirefox3.0
mozillafirefox3.0.1
mozillafirefox3.0.2
mozillafirefox3.0.3
mozillafirefox3.0.4
mozillafirefox3.0.5
mozillafirefox3.0.6
mozillafirefox3.0.7
mozillafirefox3.0.8
mozillafirefox3.0.9
mozillafirefox3.0.10
mozillafirefox3.0.11
mozillafirefox3.0.12
mozillafirefox3.0.13
mozillafirefox3.0.14
mozillafirefox3.0.15
mozillafirefox3.0.16
mozillafirefox3.0.17
mozillafirefox3.5
mozillafirefox3.5.1
mozillafirefox3.5.2
mozillafirefox3.5.3
mozillafirefox3.5.4
mozillafirefox3.5.5
mozillafirefox3.5.6
mozillafirefox3.5.7
mozillafirefox3.5.8
mozillafirefox3.5.9
mozillafirefox3.5.10
mozillafirefox3.5.11
mozillafirefox3.5.12
mozillafirefox3.5.13
mozillafirefox3.5.14
mozillafirefox3.5.15
mozillafirefox3.6
mozillafirefox3.6.2
mozillafirefox3.6.3
mozillafirefox3.6.4
mozillafirefox3.6.6
mozillafirefox3.6.7
mozillafirefox3.6.8
mozillafirefox3.6.9
mozillafirefox3.6.10
mozillafirefox3.6.11
mozillafirefox3.6.12
mozillafirefox3.6.13
mozillafirefox3.6.14
mozillafirefox3.6.15
mozillafirefox3.6.16
mozillafirefox3.6.17
mozillafirefox3.6.18
mozillafirefox3.6.19
mozillafirefox3.6.20
mozillafirefox3.6.21
mozillafirefox3.6.22
mozillafirefox3.6.23
mozillafirefox3.6.24
mozillafirefox3.6.25
mozillafirefox4.0
mozillafirefox4.0.1
mozillafirefox5.0
mozillafirefox5.0.1
mozillafirefox6.0
mozillafirefox6.0.1
mozillafirefox6.0.2
mozillafirefox7.0
mozillafirefox7.0.1
mozillafirefox8.0
mozillafirefox8.0.1
mozillafirefox9.0
mozillafirefox9.0.1
mozillafirefox10.0
mozillafirefox10.0.1
mozillafirefox10.0.2
mozillafirefox11.0
mozillafirefox12.0
mozillafirefox13.0
mozillafirefox13.0.1
mozillafirefox14.0
mozillafirefox14.0.1
mozillafirefox15.0
mozillafirefox15.0.1

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.