Lucene search

K

PRIOn knowledge basePRION:CVE-2012-4210

HistoryNov 21, 2012 - 12:55 p.m.

Code injection

2012-11-2112:55:00

PRIOn knowledge base

www.prio-n.com

3

7.4 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.1%

The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted stylesheet.

CPENameOperatorVersion
firefoxeq13.0.1
firefoxeq14.0.1
firefoxeq0.1
firefoxeq4.0 beta6
firefoxeq4.0 beta1
firefoxeq3.6.2
firefoxeq0.8
firefoxeq2.0.0.12
firefoxeq1.5 beta2
firefoxeq3.0.17

Rows per page:

1-10 of 1821

References

lists.opensuse.org/opensuse-security-announce/2012-11/msg00021.html

lists.opensuse.org/opensuse-security-announce/2013-01/msg00022.html

lists.opensuse.org/opensuse-updates/2012-11/msg00090.html

lists.opensuse.org/opensuse-updates/2012-11/msg00093.html

rhn.redhat.com/errata/RHSA-2012-1482.html

secunia.com/advisories/51359

secunia.com/advisories/51369

secunia.com/advisories/51434

secunia.com/advisories/51439

www.mandriva.com/security/advisories?name=MDVSA-2012:173

www.mozilla.org/security/announce/2012/mfsa2012-104.html

www.palemoon.org/releasenotes-ng.shtml

www.securityfocus.com/bid/56646

www.ubuntu.com/usn/USN-1638-1

www.ubuntu.com/usn/USN-1638-2

www.ubuntu.com/usn/USN-1638-3

bugzilla.mozilla.org/show_bug.cgi?id=796866

exchange.xforce.ibmcloud.com/vulnerabilities/80182

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16833

7.4 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

87.1%

Related for PRION:CVE-2012-4210

openvas24 mozilla1 cvelist1 nvd1 cve1 ubuntucve1 nessus19 veracode11 centos1 redhat1 oraclelinux1 ubuntu3 suse2 freebsd1 securityvulns1 ibm2 gentoo1