NVD

Id
45642  
Name
CVE-2012-4196  
Description
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same Origin Policy and read the Location object via a prototype property-injection attack that defeats certain protection mechanisms for this object.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2012-10-29  
Modified Date
2013-11-02  
Seq
2012-4196  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
228953 45642 CVE-2012-4196 openSUSE-SU-2012:1412  View
228954 45642 CVE-2012-4196 SUSE-SU-2012:1426  View
228955 45642 CVE-2012-4196 oval:org.mitre.oval:def:16962  View
228956 45642 CVE-2012-4196 RHSA-2012:1407  View
228957 45642 CVE-2012-4196 RHSA-2012:1413  View
228958 45642 CVE-2012-4196 http://www.mozilla.org/security/announce/2012/mfsa2012-90.html  View
228959 45642 CVE-2012-4196 56306  View
228960 45642 CVE-2012-4196 USN-1620-1  View
228961 45642 CVE-2012-4196 USN-1620-2  View
228962 45642 CVE-2012-4196 https://bugzilla.mozilla.org/show_bug.cgi?id=802557  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29453 JVNDB-2012-005160 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 複数の Mozilla 製品には、同一生成元ポリシー (Same Origin Policy) を回避され、Location オブジェクトを読まれる脆弱性が存在します。 CVE-2012-4196 57434 CVE-2012-4196 45642 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005160.html 2012-10-26 2013-10-28 View