CVE-2012-4427

Опубликовано: 01 окт. 2012

Источник: debian

EPSS Низкий

Описание

The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gnome-shell	fixed	3.34.0-2		package

Примечания

I don't see much of a problem here, if you install from a repo, you need to trust it
https://bugzilla.gnome.org/show_bug.cgi?id=684215
Problem with GNOME Shell's NPAPI browser extension which is not shipped
anymore since GNOME 3.32.

EPSS

Процентиль: 77%

0.01026

Низкий

Связанные уязвимости

CVE-2012-4427

ubuntu

больше 13 лет назад

The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page.

CVE-2012-4427

nvd

больше 13 лет назад

The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page.

GHSA-gxj3-vwm6-2f7w

github

больше 3 лет назад

The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page.

EPSS

Процентиль: 77%

0.01026

Низкий