Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-4196 Cross-Origin Security Bypass Vulnerability

Bugtraq ID: 56306
Class: Origin Validation Error
CVE: CVE-2012-4196
Remote: Yes
Local: No
Published: Oct 29 2012 12:00AM
Updated: Apr 13 2015 10:15PM
Credit: Antoine Delignat-Lavaud
Vulnerable: Ubuntu Ubuntu Linux 12.10 i386
Ubuntu Ubuntu Linux 12.10 amd64
Ubuntu Ubuntu Linux 12.10
Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
Ubuntu Ubuntu Linux 12.04
Ubuntu Ubuntu Linux 11.10 i386
Ubuntu Ubuntu Linux 11.10 amd64
Ubuntu Ubuntu Linux 11.10
Ubuntu Ubuntu Linux 11.04
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 LTS
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
SuSE SUSE Linux Enterprise Server for VMware 11 SP2
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 11 SP2
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 10 SP4
SuSE SUSE Linux Enterprise SDK 11 SP2
SuSE SUSE Linux Enterprise SDK 10 SP4
SuSE Suse Linux Enterprise Desktop 11 SP2
+ Linux kernel 2.6.5
SuSE Suse Linux Enterprise Desktop 10 SP4
+ Linux kernel 2.6.5
Slackware Linux x86_64 -current
Slackware Linux 14.0 x86_64
Slackware Linux 14.0
Slackware Linux 13.37 x86_64
Slackware Linux 13.37
Slackware Linux -current
S.u.S.E. openSUSE 12.2
S.u.S.E. openSUSE 12.1
S.u.S.E. openSUSE 11.4
Redhat Enterprise Linux Workstation Optional 6
Redhat Enterprise Linux Workstation 6
Redhat Enterprise Linux Server Optional 6
Redhat Enterprise Linux Server 6
Redhat Enterprise Linux Optional Productivity Application 5 server
Redhat Enterprise Linux HPC Node Optional 6
Redhat Enterprise Linux Desktop Workstation 5 client
Redhat Enterprise Linux Desktop Optional 6
Redhat Enterprise Linux Desktop 6
Redhat Enterprise Linux Desktop 5 client
Redhat Enterprise Linux 5 Server
Oracle Solaris 10
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
Mozilla Thunderbird ESR 10.0.5
Mozilla Thunderbird ESR 10.0.4
Mozilla Thunderbird ESR 10.0.3
Mozilla Thunderbird ESR 10.0.9
Mozilla Thunderbird ESR 10.0.8
Mozilla Thunderbird ESR 10.0.7
Mozilla Thunderbird ESR 10.0.6
Mozilla Thunderbird ESR 10.0.2
Mozilla Thunderbird 16.0.1
Mozilla Thunderbird 16
Mozilla Thunderbird 15
Mozilla Thunderbird 14.0
Mozilla Thunderbird 14
Mozilla Thunderbird 13.0
Mozilla Thunderbird 12.0
Mozilla Thunderbird 11.0
Mozilla Thunderbird 10.0.2
Mozilla Thunderbird 10.0.1
Mozilla Thunderbird 10.0
Mozilla Thunderbird 10.0
Mozilla SeaMonkey 2.0.11
Mozilla SeaMonkey 2.0.9
Mozilla SeaMonkey 2.0.8
Mozilla SeaMonkey 2.0.5
Mozilla SeaMonkey 2.0.4
Mozilla SeaMonkey 2.0.3
Mozilla SeaMonkey 2.0.2
Mozilla SeaMonkey 2.0.1
Mozilla SeaMonkey 2.9
Mozilla SeaMonkey 2.8
Mozilla SeaMonkey 2.7.2
Mozilla SeaMonkey 2.7.1
Mozilla SeaMonkey 2.7
Mozilla SeaMonkey 2.6
Mozilla SeaMonkey 2.5
Mozilla SeaMonkey 2.4
Mozilla SeaMonkey 2.3
Mozilla SeaMonkey 2.2
Mozilla SeaMonkey 2.1b2
Mozilla SeaMonkey 2.13.1
Mozilla SeaMonkey 2.13
Mozilla SeaMonkey 2.12
Mozilla SeaMonkey 2.11
Mozilla SeaMonkey 2.11
Mozilla SeaMonkey 2.10
Mozilla SeaMonkey 2.1
Mozilla SeaMonkey 2.0.9
Mozilla SeaMonkey 2.0.7
Mozilla SeaMonkey 2.0.6
Mozilla SeaMonkey 2.0.5
Mozilla SeaMonkey 2.0.4
Mozilla SeaMonkey 2.0.14
Mozilla SeaMonkey 2.0.13
Mozilla SeaMonkey 2.0.12
Mozilla SeaMonkey 2.0.10
Mozilla SeaMonkey 2.0
Mozilla Firefox ESR 10.0.8
Mozilla Firefox ESR 10.0.7
Mozilla Firefox ESR 10.0.5
Mozilla Firefox ESR 10.0.4
Mozilla Firefox ESR 10.0.3
Mozilla Firefox ESR 10.0.9
Mozilla Firefox ESR 10.0.6
Mozilla Firefox ESR 10.0.2
Mozilla Firefox 16.0.1
Mozilla Firefox 15.0.1
Mozilla Firefox 16
Mozilla Firefox 15
Mozilla Firefox 14.01
Mozilla Firefox 14.0
Mozilla Firefox 14
Mozilla Firefox 13.0
Mozilla Firefox 12.0
Mozilla Firefox 11.0
Mozilla Firefox 10.0.2
Mozilla Firefox 10.0.1
Mozilla Firefox 10.0
Mozilla Firefox 10
Moonchild Productions Pale Moon 3.6.31
Moonchild Productions Pale Moon 3.6.30
Moonchild Productions Pale Moon 3.6.27
Moonchild Productions Pale Moon 3.6.26
Moonchild Productions Pale Moon 9.2
Moonchild Productions Pale Moon 9.1
Moonchild Productions Pale Moon 9.0.1
Moonchild Productions Pale Moon 3.6.30
Moonchild Productions Pale Moon 3.6.29
Moonchild Productions Pale Moon 15.2
Moonchild Productions Pale Moon 15.0
Moonchild Productions Pale Moon 12.3
Moonchild Productions Pale Moon 12.2.1
Moonchild Productions Pale Moon 12.1
Moonchild Productions Pale Moon 12.0
Moonchild Productions Pale Moon 11.0
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Gentoo Linux
CentOS CentOS 5
Avaya one-X Client Enablement Service 6.0 SP2
Avaya one-X Client Enablement Service 6.0 SP1
Not Vulnerable: Mozilla Thunderbird ESR 10.0.10
Mozilla Thunderbird 16.0.2
Mozilla SeaMonkey 2.13.2
Mozilla Firefox ESR 10.0.10
Mozilla Firefox 16.0.2
Moonchild Productions Pale Moon 15.2.1
Avaya one-X Client Enablement Service 6.1
Avaya one-X Client Enablement Service 6.0 SP3


 

Privacy Statement
Copyright 2010, SecurityFocus