Lucene search

K

MitreCVELIST:CVE-2012-4196

HistoryOct 29, 2012 - 6:00 p.m.

CVE-2012-4196

2012-10-2918:00:00

mitre

www.cve.org

9 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.4%

Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same Origin Policy and read the Location object via a prototype property-injection attack that defeats certain protection mechanisms for this object.

References

lists.opensuse.org/opensuse-security-announce/2012-10/msg00019.html

lists.opensuse.org/opensuse-security-announce/2012-10/msg00025.html

rhn.redhat.com/errata/RHSA-2012-1407.html

rhn.redhat.com/errata/RHSA-2012-1413.html

secunia.com/advisories/51121

secunia.com/advisories/51123

secunia.com/advisories/51127

secunia.com/advisories/51144

secunia.com/advisories/51146

secunia.com/advisories/51147

secunia.com/advisories/51165

secunia.com/advisories/55318

www.mozilla.org/security/announce/2012/mfsa2012-90.html

www.securityfocus.com/bid/56306

www.ubuntu.com/usn/USN-1620-1

www.ubuntu.com/usn/USN-1620-2

bugzilla.mozilla.org/show_bug.cgi?id=802557

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16962

9 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.4%

Related for CVELIST:CVE-2012-4196

cve1 nvd1 prion1 ubuntucve1 nessus27 openvas46 veracode2 ubuntu2 suse3 redhat2 freebsd1 oraclelinux2 centos2 mozilla1 securityvulns1 ibm2 gentoo1