Cross-site scripting vulnerability in Mozilla Firefox, Thunderbird and Seamonkey - MFSA 2012-93 (Mac OS)ID: oval:org.secpod.oval:def:8069 | Date: (C)2012-11-30 (M)2023-11-19 |
Class: PATCH | Family: macos |
The host is missing a security update according to MFSA 2012-93. The update is required to fix cross-site scripting vulnerability. A flaw is present in the applications, which uses an incorrect context during the handling of JavaScript code that sets the location.href property. Successful exploitation allows remote attackers to conduct cross-site scripting (XSS) attacks or read arbitrary files by leveraging a sandboxed add-on.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Product: |
Mozilla Firefox |
Mozilla SeaMonkey |
Mozilla Thunderbird |