Lucene search
Ubuntu.comUB:CVE-2012-3976HistoryAug 29, 2012 - 12:00 a.m.
CVE-2012-3976
2012-08-2900:00:00
ubuntu.com
ubuntu.com
17
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
59.0%
Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and SeaMonkey
before 2.12 do not properly handle onLocationChange events during
navigation between different https sites, which allows remote attackers to
spoof the X.509 certificate information in the address bar via a crafted
web page.
Notes
| Author | Note |
|---|---|
| micahg | per upstream MFSA, only affects Firefox |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | firefox | < 15.0+build1-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | firefox | < 15.0+build1-0ubuntu0.11.04.2 | UNKNOWN |
| ubuntu | 11.10 | noarch | firefox | < 15.0+build1-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | firefox | < 15.0+build1-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | firefox | < 15.0+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 13.04 | noarch | firefox | < 15.0+build1-0ubuntu1 | UNKNOWN |
| ubuntu | 13.10 | noarch | firefox | < 15.0+build1-0ubuntu1 | UNKNOWN |
Related
cvelist
cvelist
CVE-2012-3976
2012-08-29 10:00:00
mozilla
mozilla
Incorrect site SSL certificate data display — Mozilla
2012-08-28 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-69) - Linux
2021-11-11 00:00:00
RedHat Update for firefox RHSA-2012:1210-01
2012-08-30 00:00:00
Oracle: Security Advisory (ELSA-2012-1210)
2015-10-06 00:00:00
prion
prion
Code injection
2012-08-29 10:56:00
nvd
nvd
CVE-2012-3976
2012-08-29 10:56:41
cve
cve
CVE-2012-3976
2012-08-29 10:56:41
nessus
nessus
Firefox < 10.0.7 Multiple Vulnerabilities (Mac OS X)
2012-08-29 00:00:00
Firefox 10.0.x < 10.0.7 Multiple Vulnerabilities
2012-08-29 00:00:00
Oracle Linux 5 / 6 : firefox (ELSA-2012-1210)
2013-07-12 00:00:00
veracode
veracode
Memory Corruption
2019-05-02 04:42:51
Memory Corruption
2019-05-02 04:42:55
Memory Corruption
2019-05-02 04:42:55
redhat
redhat
(RHSA-2012:1210) Critical: firefox security update
2012-08-29 00:00:00
centos
centos
firefox, xulrunner security update
2012-08-29 12:43:30
oraclelinux
oraclelinux
firefox security update
2012-08-29 00:00:00
suse
suse
MozillaFirefox: Update to version 15 (critical)
2012-08-30 12:09:32
MozillaFirefox: Update to version 15 (critical)
2012-08-30 12:09:15
Security update for Mozilla Firefox (important)
2012-09-13 01:08:39
ubuntu
ubuntu
Firefox regression
2012-09-11 00:00:00
Firefox vulnerabilities
2012-08-29 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-09-18 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-08-28 00:00:00
ibm
ibm
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
59.0%
Related for UB:CVE-2012-3976