exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2012-0458

больше 13 лет назад

Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through the dragging of a URL to the home button, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a javascript: URL that is later interpreted in the about:sessionrestore context.

CVSS2: 6.8

EPSS: Низкий

CVE-2012-0458

больше 13 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2012-0458

больше 13 лет назад

CVSS2: 6.8

EPSS: Низкий

CVE-2012-0458

больше 13 лет назад

Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x b ...

CVSS2: 6.8

EPSS: Низкий

GHSA-7574-4phv-mpvf

больше 3 лет назад

EPSS: Низкий

ELSA-2012-0388

больше 13 лет назад

ELSA-2012-0388: thunderbird security update (CRITICAL)

EPSS: Низкий

ELSA-2012-0387

больше 13 лет назад

ELSA-2012-0387: firefox security and bug fix update (CRITICAL)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-0458 Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through the dragging of a URL to the home button, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a javascript: URL that is later interpreted in the about:sessionrestore context.	CVSS2: 6.8	3% Низкий	больше 13 лет назад
CVE-2012-0458 Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through the dragging of a URL to the home button, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a javascript: URL that is later interpreted in the about:sessionrestore context.	CVSS2: 6.8	3% Низкий	больше 13 лет назад
CVE-2012-0458 Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through the dragging of a URL to the home button, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a javascript: URL that is later interpreted in the about:sessionrestore context.	CVSS2: 6.8	3% Низкий	больше 13 лет назад
CVE-2012-0458 Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x b ...	CVSS2: 6.8	3% Низкий	больше 13 лет назад
GHSA-7574-4phv-mpvf Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict setting the home page through the dragging of a URL to the home button, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a javascript: URL that is later interpreted in the about:sessionrestore context.		3% Низкий	больше 3 лет назад
ELSA-2012-0388 ELSA-2012-0388: thunderbird security update (CRITICAL)			больше 13 лет назад
ELSA-2012-0387 ELSA-2012-0387: firefox security and bug fix update (CRITICAL)			больше 13 лет назад

Уязвимостей на страницу