CVE-2012-0450 in Firefoxinfo

Summary

Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and Mac OS X set weak permissions for Firefox Recovery Key.html, which might allow local users to read a Firefox Sync key via standard filesystem operations.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

01/09/2012

Disclosure

02/01/2012

Moderation

VulDB entry created

Entries

VDB-4592 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.5

EPSS

0.00071

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-0450
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-0450
CVE Details	https://www.cvedetails.com/cve/CVE-2012-0450/

◂ Previous Overview Next ▸