Oval Definition:oval:com.ubuntu.precise:def:20120475000
Revision Date:2012-04-25Version:1
Title:CVE-2012-0475 on Ubuntu 12.04 LTS (precise) - low.
Description:Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not properly construct the Origin and Sec-WebSocket-Origin HTTP headers, which might allow remote attackers to bypass an IPv6 literal ACL via a cross-site (1) XMLHttpRequest or (2) WebSocket operation involving a nonstandard port number and an IPv6 address that contains certain zero fields.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2012-0475
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • The 'firefox' package in precise was vulnerable but has been fixed (note: '12.0+build1-0ubuntu0.12.04.1').
  • OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '12.0.1+build1-0ubuntu0.12.04.1').
  • BACK