Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-1945
HistoryJun 05, 2012 - 11:55 p.m.

CVE-2012-1945

2012-06-0523:55:00
CWE-200
[email protected]
web.nvd.nist.gov
34
cve-2012-1945
mozilla firefox
thunderbird
seamonkey
local users
sensitive information
html document
iframe
microsoft windows
samba

8.3 High

AI Score

Confidence

High

2.9 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

39.6%

JSON

Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allow local users to obtain sensitive information via an HTML document that loads a shortcut (aka .lnk) file for display within an IFRAME element, as demonstrated by a network share implemented by (1) Microsoft Windows or (2) Samba.

Related

prion 1
ubuntucve 1
mozilla 1
openvas 38
nessus 18
veracode 6
oraclelinux 2
ubuntu 4
suse 3
centos 2
redhat 2
freebsd 1
gentoo 1
prion
prion
Information disclosure
2012-06-05 23:55:00
ubuntucve
ubuntucve
CVE-2012-1945
2012-06-06 00:00:00
mozilla
mozilla
Information disclosure though Windows file shares and shortcut files — Mozilla
2012-06-05 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-37) - Linux
2021-11-11 00:00:00
CentOS Update for firefox CESA-2012:0710 centos6
2012-07-30 00:00:00
Oracle: Security Advisory (ELSA-2012-0710)
2015-10-06 00:00:00
nessus
nessus
Ubuntu 11.04 : thunderbird vulnerabilities (USN-1463-6)
2012-06-27 00:00:00
openSUSE Security Update : MozillaFirefox / MozillaThunderbird / mozilla-nss / etc (openSUSE-SU-2012:0760-1)
2014-06-13 00:00:00
Scientific Linux Security Update : thunderbird on SL5.x, SL6.x i386/x86_64 (20120606)
2012-08-01 00:00:00
veracode
veracode
Information Disclosure
2019-05-02 04:41:42
Cross Site Scripting (XSS)
2019-05-02 04:41:41
Use-After-Free (UAF)
2019-05-02 04:41:42
oraclelinux
oraclelinux
firefox security update
2012-06-05 00:00:00
thunderbird security update
2012-06-06 00:00:00
ubuntu
ubuntu
Firefox regressions
2012-06-20 00:00:00
Thunderbird vulnerabilities
2012-06-22 00:00:00
Firefox vulnerabilities
2012-06-06 00:00:00
suse
suse
MozillaFirefox, MozillaThunderbird, mozilla-nss, seamonkey, xulrunner: June (important)
2012-06-19 12:08:31
Security update for Mozilla Firefox (important)
2012-06-15 22:08:23
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
centos
centos
thunderbird security update
2012-06-07 09:01:37
firefox, xulrunner security update
2012-06-06 13:06:53
redhat
redhat
(RHSA-2012:0710) Critical: firefox security update
2012-06-05 00:00:00
(RHSA-2012:0715) Critical: thunderbird security update
2012-06-06 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-06-05 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

8.3 High

AI Score

Confidence

High

2.9 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

39.6%

JSON
Related for CVE-2012-1945
prion1ubuntucve1mozilla1openvas38nessus18veracode6oraclelinux2ubuntu4suse3centos2redhat2freebsd1gentoo1