Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-5h9x-peth-nufx
Summary
Using the Address Sanitizer tool, security researcher Atte
Kettunen from OUSPG found a heap corruption in gfxImageSurface which
allows for invalid frees and possible remote code execution. This happens due to
float error, resulting from graphics values being passed through different
number systems.
Aliases
0
alias CVE-2012-0470
Fixed_packages
0
url pkg:mozilla/Firefox@12.0.0
purl pkg:mozilla/Firefox@12.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@12.0.0
1
url pkg:mozilla/Firefox%20ESR@10.0.4
purl pkg:mozilla/Firefox%20ESR@10.0.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@10.0.4
2
url pkg:mozilla/SeaMonkey@2.9.0
purl pkg:mozilla/SeaMonkey@2.9.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.9.0
3
url pkg:mozilla/Thunderbird@12.0.0
purl pkg:mozilla/Thunderbird@12.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@12.0.0
4
url pkg:mozilla/Thunderbird%20ESR@10.0.4
purl pkg:mozilla/Thunderbird%20ESR@10.0.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird%2520ESR@10.0.4
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0470
reference_id CVE-2012-0470
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0470
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2012-23
reference_id mfsa2012-23
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2012-23
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-5h9x-peth-nufx