ByteOS Network

NVD Vulnerability Details :

CVE-2012-0451

Deferred

Source-cve@mitre.org

Published At-14 Mar, 2012 | 19:55

Updated At-11 Apr, 2025 | 00:51

CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote web servers to bypass intended Content Security Policy (CSP) restrictions and possibly conduct cross-site scripting (XSS) attacks via crafted HTTP headers.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N

Hyperlink	Source	Resource
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html	cve@mitre.org	N/A
http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html	cve@mitre.org	N/A
http://rhn.redhat.com/errata/RHSA-2012-0387.html	cve@mitre.org	N/A
http://rhn.redhat.com/errata/RHSA-2012-0388.html	cve@mitre.org	N/A
http://secunia.com/advisories/48359	cve@mitre.org	N/A
http://secunia.com/advisories/48402	cve@mitre.org	N/A
http://secunia.com/advisories/48496	cve@mitre.org	N/A
http://secunia.com/advisories/48513	cve@mitre.org	N/A
http://secunia.com/advisories/48553	cve@mitre.org	N/A
http://secunia.com/advisories/48561	cve@mitre.org	N/A
http://secunia.com/advisories/48629	cve@mitre.org	N/A
http://secunia.com/advisories/49055	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2012:032	cve@mitre.org	N/A
http://www.mozilla.org/security/announce/2012/mfsa2012-15.html	cve@mitre.org	N/A
http://www.securityfocus.com/bid/52463	cve@mitre.org	N/A
http://www.securitytracker.com/id?1026801	cve@mitre.org	N/A
http://www.securitytracker.com/id?1026803	cve@mitre.org	N/A
http://www.securitytracker.com/id?1026804	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1400-1	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1400-2	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1400-3	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1400-4	cve@mitre.org	N/A
http://www.ubuntu.com/usn/USN-1400-5	cve@mitre.org	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=717511	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14909	cve@mitre.org	N/A
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00014.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.opensuse.org/opensuse-updates/2012-03/msg00042.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://rhn.redhat.com/errata/RHSA-2012-0387.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://rhn.redhat.com/errata/RHSA-2012-0388.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48359	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48402	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48496	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48513	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48553	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48561	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/48629	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/49055	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2012:032	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mozilla.org/security/announce/2012/mfsa2012-15.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/52463	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1026801	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1026803	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1026804	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1400-1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1400-2	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1400-3	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1400-4	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/USN-1400-5	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.mozilla.org/show_bug.cgi?id=717511	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14909	af854a3a-2127-422b-91ae-364da2661108	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History