Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2012-3985

Опубликовано: 10 окт. 2012
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging initial-origin access after document.domain has been set.

РелизСтатусПримечание
devel

released

16.0+build1-0ubuntu1
hardy

ignored

end of life
lucid

released

16.0+build1-0ubuntu0.10.04.1
natty

released

16.0+build1-0ubuntu0.11.04.1
oneiric

released

16.0+build1-0ubuntu0.11.10.1
precise

released

16.0+build1-0ubuntu0.12.04.1
quantal

released

16.0+build1-0ubuntu1
raring

released

16.0+build1-0ubuntu1
saucy

released

16.0+build1-0ubuntu1
upstream

released

16.0

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

ignored

end of life
lucid

ignored

end of life
natty

ignored

end of life
oneiric

ignored

end of life
precise

DNE

quantal

DNE

raring

DNE

saucy

DNE

upstream

released

2.13

Показывать по

РелизСтатусПримечание
devel

released

16.0.1+build1-0ubuntu1
hardy

ignored

end of life
lucid

released

16.0+build1-0ubuntu0.10.04.1
natty

released

16.0+build1-0ubuntu0.11.04.1
oneiric

released

16.0+build1-0ubuntu0.11.10.1
precise

released

16.0+build1-0ubuntu0.12.04.1
quantal

released

16.0.1+build1-0ubuntu1
raring

released

16.0.1+build1-0ubuntu1
saucy

released

16.0.1+build1-0ubuntu1
upstream

released

16.0

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

ignored

end of life
lucid

ignored

end of life
natty

ignored

end of life
oneiric

DNE

precise

DNE

quantal

DNE

raring

DNE

saucy

DNE

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 76%
0.00924
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2012-3985

redhat
больше 13 лет назад

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging initial-origin access after document.domain has been set.

nvd логотип

CVE-2012-3985

nvd
больше 13 лет назад

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging initial-origin access after document.domain has been set.

debian логотип

CVE-2012-3985

debian
больше 13 лет назад

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey be ...

github логотип

GHSA-h2cq-jrvg-h8x6

github
больше 3 лет назад

Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly implement the HTML5 Same Origin Policy, which allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging initial-origin access after document.domain has been set.

EPSS

Процентиль: 76%
0.00924
Низкий

4.3 Medium

CVSS2