Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2012-4210
Description:The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted stylesheet.
Test IDs: 1.3.6.1.4.1.25623.1.0.72599   1.3.6.1.4.1.25623.1.0.803062   1.3.6.1.4.1.25623.1.0.803348  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-4210
BugTraq ID: 56646
http://www.securityfocus.com/bid/56646
http://www.mandriva.com/security/advisories?name=MDVSA-2012:173
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16833
RedHat Security Advisories: RHSA-2012:1482
http://rhn.redhat.com/errata/RHSA-2012-1482.html
http://secunia.com/advisories/51359
http://secunia.com/advisories/51369
http://secunia.com/advisories/51434
http://secunia.com/advisories/51439
SuSE Security Announcement: SUSE-SU-2012:1592 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00021.html
SuSE Security Announcement: openSUSE-SU-2012:1583 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-11/msg00090.html
SuSE Security Announcement: openSUSE-SU-2012:1586 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-11/msg00093.html
SuSE Security Announcement: openSUSE-SU-2013:0175 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00022.html
http://www.ubuntu.com/usn/USN-1638-1
http://www.ubuntu.com/usn/USN-1638-2
http://www.ubuntu.com/usn/USN-1638-3
XForce ISS Database: firefox-style-inspector-priv-esc(80182)
https://exchange.xforce.ibmcloud.com/vulnerabilities/80182




© 1998-2021 E-Soft Inc. All rights reserved.