Oval Definition:oval:com.ubuntu.precise:def:20161967000
Revision Date:2016-03-13Version:1
Title:CVE-2016-1967 on Ubuntu 12.04 LTS (precise) - medium.
Description:Mozilla Firefox before 45.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls after restoring a browser session. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-7207.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-1967
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • The 'firefox' package in precise was vulnerable but has been fixed (note: '45.0+build2-0ubuntu0.12.04.1').
  • OR NOT While related to the CVE in some way, the 'thunderbird' package in precise is not affected.
  • BACK