[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Multiple cross site scripting vulnerabilities in Mozilla Firefox, Thunderbird and SeaMonkey via a (1) web page or (2) Firefox extension - MFSA 2012-05 (Mac OS X)

ID: oval:org.secpod.oval:def:4462Date: (C)2012-03-05   (M)2023-11-19
Class: PATCHFamily: macos




The host is missing a critical security update according to Mozilla advisory, MFSA 2012-05. The update is required to fix multiple cross site scripting vulnerabilities. The flaws are present in the applications, which fail to properly enforce XPConnect security restrictions for frame scripts that call untrusted objects. Successful exploitation could allow attackers to inject arbitrary web script or HTML.

Platform:
Apple Mac OS 14
Apple Mac OS 13
Apple Mac OS 12
Apple Mac OS 11
Apple Mac OS X 10.15
Apple Mac OS X 10.14
Apple Mac OS X 10.13
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Product:
Mozilla Firefox
Mozilla SeaMonkey
Mozilla Thunderbird
Reference:
MFSA 2012-05
CVE-2012-0446
CVE    1
CVE-2012-0446
CPE    129
cpe:/a:mozilla:seamonkey:1.0.1
cpe:/a:mozilla:seamonkey:1.0.2
cpe:/a:mozilla:thunderbird:5.0
cpe:/a:mozilla:seamonkey:2.6.1
...

© SecPod Technologies