Lucene search
Ubuntu.comUB:CVE-2012-0477HistoryApr 25, 2012 - 12:00 a.m.
CVE-2012-0477
2012-04-2500:00:00
ubuntu.com
ubuntu.com
12
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.2%
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x
through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0,
Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote
attackers to inject arbitrary web script or HTML via the (1) ISO-2022-KR or
(2) ISO-2022-CN character set.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | firefox | < 12.0+build1-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | firefox | < 12.0+build1-0ubuntu0.11.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | firefox | < 12.0+build1-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | firefox | < 12.0+build1-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | thunderbird | < 12.0.1+build1-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | thunderbird | < 12.0.1+build1-0ubuntu0.11.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | thunderbird | < 12.0.1+build1-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | thunderbird | < 12.0.1+build1-0ubuntu0.12.04.1 | UNKNOWN |
References
Related
mozilla
mozilla
Potential XSS through ISO-2022-KR/ISO-2022-CN decoding issues — Mozilla
2012-04-24 00:00:00
prion
prion
Cross site scripting
2012-04-25 10:10:00
cvelist
cvelist
CVE-2012-0477
2012-04-25 10:00:00
nvd
nvd
CVE-2012-0477
2012-04-25 10:10:17
cve
cve
CVE-2012-0477
2012-04-25 10:10:17
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:09:12
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-29) - Linux
2021-11-11 00:00:00
Debian: Security Advisory (DSA-2457-1)
2013-09-18 00:00:00
Debian Security Advisory DSA 2464-1 (icedove)
2012-05-31 00:00:00
osv
osv
icedove - several
2012-05-08 00:00:00
iceweasel - several
2012-05-13 00:00:00
icedove - regression
2012-05-08 00:00:00
nessus
nessus
Debian DSA-2464-2 : icedove - several vulnerabilities
2012-05-04 00:00:00
Debian DSA-2457-2 : iceweasel - several vulnerabilities
2012-04-25 00:00:00
Debian DSA-2458-2 : iceape - several vulnerabilities
2012-04-25 00:00:00
debian
debian
[SECURITY] [DSA 2464-1] icedove security update
2012-05-03 15:45:46
[SECURITY] [DSA 2457-1] iceweasel security update
2012-04-24 20:35:21
[SECURITY] [DSA 2457-2] New icedove/iceweasel packages fix regression
2012-05-13 21:09:29
oraclelinux
oraclelinux
firefox security update
2012-04-25 00:00:00
thunderbird security update
2012-04-25 00:00:00
centos
centos
firefox, xulrunner security update
2012-04-25 01:27:20
thunderbird security update
2012-04-25 01:30:17
redhat
redhat
(RHSA-2012:0515) Critical: firefox security update
2012-04-24 00:00:00
(RHSA-2012:0516) Critical: thunderbird security update
2012-04-24 00:00:00
ubuntu
ubuntu
ubufox update
2012-04-27 00:00:00
Firefox vulnerabilities
2012-04-27 00:00:00
Thunderbird vulnerabilities
2012-05-04 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2012-06-02 02:08:30
Security update for Mozilla Firefox (important)
2012-05-02 19:08:16
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-04-24 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-05-09 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.003 Low
EPSS
Percentile
66.2%
Related for UB:CVE-2012-0477