Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to spoof the address bar via an https URL for invalid (1) RSS or (2) Atom XML content.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
21 Nov 2024, 01:35
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/48920 - | |
References | () http://secunia.com/advisories/48922 - | |
References | () http://secunia.com/advisories/48972 - | |
References | () http://secunia.com/advisories/49047 - | |
References | () http://secunia.com/advisories/49055 - | |
References | () http://www.debian.org/security/2012/dsa-2457 - | |
References | () http://www.debian.org/security/2012/dsa-2458 - | |
References | () http://www.debian.org/security/2012/dsa-2464 - | |
References | () http://www.mandriva.com/security/advisories?name=MDVSA-2012:066 - | |
References | () http://www.mandriva.com/security/advisories?name=MDVSA-2012:081 - | |
References | () http://www.mozilla.org/security/announce/2012/mfsa2012-33.html - | |
References | () http://www.securityfocus.com/bid/53224 - | |
References | () https://bugzilla.mozilla.org/show_bug.cgi?id=714631 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/75156 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17011 - |
21 Oct 2024, 13:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:mozilla:firefox_esr:10.0.1:*:*:*:*:*:*:* cpe:2.3:a:mozilla:firefox_esr:10.0:*:*:*:*:*:*:* |
21 Oct 2024, 13:11
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:mozilla:firefox:10.0.3:*:*:*:*:*:*:* |
Information
Published : 2012-04-25 10:10
Updated : 2024-11-21 01:35
NVD link : CVE-2012-0479
Mitre link : CVE-2012-0479
CVE.ORG link : CVE-2012-0479
JSON object : View
Products Affected
mozilla
- thunderbird
- firefox
- thunderbird_esr
- seamonkey
CWE