CVE-2012-1963

🗓️ 18 Jul 2012 10:00:00Reported by mitreType

Content Security Policy (CSP) in Mozilla Firefox and Thunderbird allows remote capture of credential

Reporter	Title	Published	Views	Family All 116
Tenable Nessus	Mozilla Firefox < 14.0 Multiple Vulnerabilities	23 Jul 201200:00	–	nessus
Tenable Nessus	Mozilla Thunderbird < 14.0 Multiple Vulnerabilities	23 Jul 201200:00	–	nessus
Tenable Nessus	SeaMonkey 2.x < 2.11 Multiple Vulnerabilities	23 Jul 201200:00	–	nessus
Tenable Nessus	Mozilla Firefox 13.x < 13 Multiple Vulnerabilities	23 Jul 201200:00	–	nessus
Tenable Nessus	Mozilla Thunderbird 13.x < 13 Multiple Vulnerabilities	23 Jul 201200:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : firefox (CESA-2012:1088)	18 Jul 201200:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : thunderbird (CESA-2012:1089)	18 Jul 201200:00	–	nessus
Tenable Nessus	FreeBSD : mozilla -- multiple vulnerabilities (dbf338d0-dce5-11e1-b655-14dae9ebcf89)	3 Aug 201200:00	–	nessus
Tenable Nessus	GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)	8 Jan 201300:00	–	nessus
Tenable Nessus	Firefox < 10.0.6 Multiple Vulnerabilities (Mac OS X)	19 Jul 201200:00	–	nessus

NVD

Node

mozilla firefoxMatch4.0

mozilla firefoxMatch4.0beta1

mozilla firefoxMatch4.0beta10

mozilla firefoxMatch4.0beta11

mozilla firefoxMatch4.0beta12

mozilla firefoxMatch4.0beta2

mozilla firefoxMatch4.0beta3

mozilla firefoxMatch4.0beta4

mozilla firefoxMatch4.0beta5

mozilla firefoxMatch4.0beta6

mozilla firefoxMatch4.0beta7

mozilla firefoxMatch4.0beta8

mozilla firefoxMatch4.0beta9

mozilla firefoxMatch4.0.1

mozilla firefoxMatch5.0

mozilla firefoxMatch5.0.1

mozilla firefoxMatch6.0

mozilla firefoxMatch6.0.1

mozilla firefoxMatch6.0.2

mozilla firefoxMatch7.0

mozilla firefoxMatch7.0.1

mozilla firefoxMatch8.0

mozilla firefoxMatch8.0.1

mozilla firefoxMatch9.0

mozilla firefoxMatch9.0.1

mozilla firefoxMatch11.0

mozilla firefoxMatch12.0

mozilla firefoxMatch12.0beta6

mozilla firefoxMatch13.0

Node

mozilla firefoxMatch10.0

mozilla firefoxMatch10.0.1

mozilla firefoxMatch10.0.2

mozilla firefoxMatch10.0.3

mozilla firefoxMatch10.0.4

mozilla firefoxMatch10.0.5

Node

mozilla thunderbirdMatch5.0

mozilla thunderbirdMatch6.0

mozilla thunderbirdMatch6.0.1

mozilla thunderbirdMatch6.0.2

mozilla thunderbirdMatch7.0

mozilla thunderbirdMatch7.0.1

mozilla thunderbirdMatch8.0

mozilla thunderbirdMatch9.0

mozilla thunderbirdMatch9.0.1

mozilla thunderbirdMatch10.0

mozilla thunderbirdMatch10.0.1

mozilla thunderbirdMatch10.0.2

mozilla thunderbirdMatch10.0.3

mozilla thunderbirdMatch10.0.4

mozilla thunderbirdMatch11.0

mozilla thunderbirdMatch12.0

mozilla thunderbirdMatch13.0

Node

mozilla thunderbird_esrMatch10.0

mozilla thunderbird_esrMatch10.0.1

mozilla thunderbird_esrMatch10.0.2

mozilla thunderbird_esrMatch10.0.3

mozilla thunderbird_esrMatch10.0.4

mozilla thunderbird_esrMatch10.0.5

Node

mozilla seamonkeyRange≤2.10

mozilla seamonkeyMatch1.0

mozilla seamonkeyMatch1.0alpha

mozilla seamonkeyMatch1.0beta

mozilla seamonkeyMatch1.0.1

mozilla seamonkeyMatch1.0.2

mozilla seamonkeyMatch1.0.3

mozilla seamonkeyMatch1.0.4

mozilla seamonkeyMatch1.0.5

mozilla seamonkeyMatch1.0.6

mozilla seamonkeyMatch1.0.7

mozilla seamonkeyMatch1.0.8

mozilla seamonkeyMatch1.0.9

mozilla seamonkeyMatch1.1

mozilla seamonkeyMatch1.1alpha

mozilla seamonkeyMatch1.1beta

mozilla seamonkeyMatch1.1.1

mozilla seamonkeyMatch1.1.2

mozilla seamonkeyMatch1.1.3

mozilla seamonkeyMatch1.1.4

mozilla seamonkeyMatch1.1.5

mozilla seamonkeyMatch1.1.6

mozilla seamonkeyMatch1.1.7

mozilla seamonkeyMatch1.1.8

mozilla seamonkeyMatch1.1.9

mozilla seamonkeyMatch1.1.10

mozilla seamonkeyMatch1.1.11

mozilla seamonkeyMatch1.1.12

mozilla seamonkeyMatch1.1.13

mozilla seamonkeyMatch1.1.14

mozilla seamonkeyMatch1.1.15

mozilla seamonkeyMatch1.1.16

mozilla seamonkeyMatch1.1.17

mozilla seamonkeyMatch1.1.18

mozilla seamonkeyMatch1.1.19

mozilla seamonkeyMatch1.5.0.8

mozilla seamonkeyMatch1.5.0.9

mozilla seamonkeyMatch1.5.0.10

mozilla seamonkeyMatch2.0

mozilla seamonkeyMatch2.0alpha_1

mozilla seamonkeyMatch2.0alpha_2

mozilla seamonkeyMatch2.0alpha_3

mozilla seamonkeyMatch2.0beta_1

mozilla seamonkeyMatch2.0beta_2

mozilla seamonkeyMatch2.0rc1

mozilla seamonkeyMatch2.0rc2

mozilla seamonkeyMatch2.0.1

mozilla seamonkeyMatch2.0.2

mozilla seamonkeyMatch2.0.3

mozilla seamonkeyMatch2.0.4

mozilla seamonkeyMatch2.0.5

mozilla seamonkeyMatch2.0.6

mozilla seamonkeyMatch2.0.7

mozilla seamonkeyMatch2.0.8

mozilla seamonkeyMatch2.0.9

mozilla seamonkeyMatch2.0.10

mozilla seamonkeyMatch2.0.11

mozilla seamonkeyMatch2.0.12

mozilla seamonkeyMatch2.0.13

mozilla seamonkeyMatch2.0.14

mozilla seamonkeyMatch2.1

mozilla seamonkeyMatch2.1alpha1

mozilla seamonkeyMatch2.1alpha2

mozilla seamonkeyMatch2.1alpha3

mozilla seamonkeyMatch2.1beta1

mozilla seamonkeyMatch2.1beta2

mozilla seamonkeyMatch2.1beta3

mozilla seamonkeyMatch2.1rc1

mozilla seamonkeyMatch2.1rc2

Source	Link
secunia	www.secunia.com/advisories/49972
lists	www.lists.opensuse.org/opensuse-security-announce/2012-07/msg00011.html
ubuntu	www.ubuntu.com/usn/USN-1509-2
ubuntu	www.ubuntu.com/usn/USN-1509-1
secunia	www.secunia.com/advisories/49994
secunia	www.secunia.com/advisories/49968
secunia	www.secunia.com/advisories/49979
mozilla	www.mozilla.org/security/announce/2012/mfsa2012-53.html
securitytracker	www.securitytracker.com/id
lists	www.lists.opensuse.org/opensuse-security-announce/2012-07/msg00013.html

29 Apr 2026 01:13Current

9.3High risk

Vulners AI Score9.3

CVSS 24.3

EPSS0.01487

CWE-264