CVE-2012-0445 in Mozilla Firefoxinfo

Summary

Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and SeaMonkey before 2.7 allow remote attackers to bypass the HTML5 frame-navigation policy and replace arbitrary sub-frames by creating a form submission target with a sub-frame s name attribute.

Reservation

01/09/2012

Disclosure

02/01/2012

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
4594	Mozilla Firefox Sub-Frame Cross-Domain Name Attribute access control	264	Unproven	Official fix	CVE-2012-0445

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!