CVE-2012-4195 : The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before

The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 does not properly determine the calling document and principal in its return value, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site, and makes it easier for remote attackers to execute arbitrary JavaScript code by leveraging certain add-on behavior.

Published 2012-10-29 18:55:01

Updated 2020-08-12 14:39:21

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Threat overview for CVE-2012-4195

Top countries where our scanners detected CVE-2012-4195

Top open port discovered on systems with this issue 8200

IPs affected by CVE-2012-4195 341

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-4195!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-4195

Probability of exploitation activity in the next 30 days: 0.23%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 60 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-4195

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2012-4195

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-4195

https://bugzilla.mozilla.org/show_bug.cgi?id=793121

793121 - (CVE-2012-4195) nsLocation::CheckURL can use the wrong principal
Issue Tracking;Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00019.html

[security-announce] openSUSE-SU-2012:1412-1: important: Mozilla Suite: U
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1620-1

USN-1620-1: Firefox vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2012-1407.html

RHSA-2012:1407 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16856

Repository / Oval Repository
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2012-1413.html

RHSA-2012:1413 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/56302

Mozilla Firefox/SeaMonkey/Thunderbird CVE-2012-4195 Cross Site Scripting Vulnerability
Third Party Advisory;VDB Entry
http://www.mozilla.org/security/announce/2012/mfsa2012-90.html

Fixes for Location object issues — Mozilla
Vendor Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00025.html

[security-announce] SUSE-SU-2012:1426-1: important: Security update for
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1620-2

USN-1620-2: Thunderbird vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2012-4195