Vulnerability Name:

CVE-2011-4688 (CCN-71633)

Assigned:2011-12-06
Published:2011-12-06
Updated:2017-09-19
Summary:Mozilla Firefox 8.0.1 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-264
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2011-4688

Source: CCN
Type: lcamtuf's blog, December 02, 2011
Rapid history extraction through non-destructive cache timing (v8)

Source: MISC
Type: Exploit
http://lcamtuf.coredump.cx/cachetime/

Source: CCN
Type: SA47090
Mozilla Firefox Cache Objects History Enumeration Weakness

Source: SECUNIA
Type: Vendor Advisory
47090

Source: CCN
Type: Mozilla Web site
Firefox - Rediscover the web

Source: CCN
Type: OSVDB ID: 77539
Mozilla Firefox Cache Objects IFRAME Handling Browsing History Disclosure

Source: CCN
Type: BID-50909
Mozilla Firefox CSS ':visited' Browser History Information Disclosure Vulnerability

Source: XF
Type: UNKNOWN
firefox-cache-objects-info-disc(71633)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:13770

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:firefox:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:*:*:*:*:*:*:*:* (Version <= 8.0.1)

    • Configuration CCN 1:
  • cpe:/a:mozilla:firefox:3.0:alpha:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0:beta5:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.1:beta1:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6:a1_pre:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.7:a1_pre:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0beta5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6:a1:-:linux:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.2:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.1:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.2:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.3:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.4:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.5:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.6:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.7:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.8:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.9:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.10:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.11:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.12:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.13:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.1:-:linux:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.2:beta3:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.2:beta1:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.2:beta2:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.0.19:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.13:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.15:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta3:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta4:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta5:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta6:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.13:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.15:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.17:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.18:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.17:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.5.19:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta7:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta8:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta9:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta10:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta12:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:4.0:beta11:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.18:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.19:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:3.6.23:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:8.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:13770
    V
    		Mozilla Firefox 8.0.1 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
    2014-10-06
    oval:com.ubuntu.precise:def:20114688000
    V
    		CVE-2011-4688 on Ubuntu 12.04 LTS (precise) - low.
    2011-12-07
    BACK
    mozilla firefox 8.0
    mozilla firefox *
    mozilla firefox 3.0 alpha
    mozilla firefox 3.0 beta5
    mozilla firefox 3.0 beta2
    mozilla firefox 3.0
    mozilla firefox 3.0.1
    mozilla firefox 3.0.3
    mozilla firefox 3.0.2
    mozilla firefox 3.0.4
    mozilla firefox 3.0.5
    mozilla firefox 3.0.6
    mozilla firefox 3.0.7
    mozilla firefox 3.0.8
    mozilla firefox 3.0.9
    mozilla firefox 3.0.10
    mozilla firefox 3.5
    mozilla firefox 3.5.1
    mozilla firefox 3.0.12
    mozilla firefox 3.0.13
    mozilla firefox 3.5.2
    mozilla firefox 3.1 beta1
    mozilla firefox 3.0.11
    mozilla firefox 3.5.3
    mozilla firefox 3.5.4
    mozilla firefox 3.6 a1_pre
    mozilla firefox 3.7 a1_pre
    mozilla firefox 3.0beta5
    mozilla firefox 3.0.14
    mozilla firefox 3.6 a1
    mozilla firefox 3.5.2 -
    mozilla firefox 3.0 -
    mozilla firefox 3.0.1 -
    mozilla firefox 3.0.2 -
    mozilla firefox 3.0.3 -
    mozilla firefox 3.0.4 -
    mozilla firefox 3.0.5 -
    mozilla firefox 3.0.6 -
    mozilla firefox 3.0.7 -
    mozilla firefox 3.0.8 -
    mozilla firefox 3.0.9 -
    mozilla firefox 3.0.10 -
    mozilla firefox 3.0.11 -
    mozilla firefox 3.0.12 -
    mozilla firefox 3.0.13 -
    mozilla firefox 3.5 -
    mozilla firefox 3.5.1 -
    mozilla firefox 3.5.5
    mozilla firefox 3.0.15
    mozilla firefox 3.5.6
    mozilla firefox 3.5.7
    mozilla firefox 3.0.16
    mozilla firefox 3.0.17
    mozilla firefox 3.6
    mozilla firefox 3.6.2
    mozilla firefox 3.6.3
    mozilla firefox 3.2 beta3
    mozilla firefox 3.2 beta1
    mozilla firefox 3.2 beta2
    mozilla firefox 3.6.1
    mozilla firefox 3.0.19
    mozilla firefox 3.5.8
    mozilla firefox 3.5.9
    mozilla firefox 3.6.4
    mozilla firefox 3.6.6
    mozilla firefox 3.5.10
    mozilla firefox 3.6.7
    mozilla firefox 3.6.8
    mozilla firefox 3.5.11
    mozilla firefox 3.5.12
    mozilla firefox 3.5.13
    mozilla firefox 3.6.9
    mozilla firefox 3.6.10
    mozilla firefox 3.6.11
    mozilla firefox 3.6.12
    mozilla firefox 3.5.14
    mozilla firefox 3.5.15
    mozilla firefox 4.0 beta1
    mozilla firefox 4.0 beta2
    mozilla firefox 4.0 beta3
    mozilla firefox 4.0 beta4
    mozilla firefox 4.0 beta5
    mozilla firefox 4.0 beta6
    mozilla firefox 3.6.13
    mozilla firefox 3.5.16
    mozilla firefox 3.6.14
    mozilla firefox 3.6.15
    mozilla firefox 3.6.16
    mozilla firefox 3.5.17
    mozilla firefox 4.0
    mozilla firefox 3.5.18
    mozilla firefox 3.6.17
    mozilla firefox 3.5.19
    mozilla firefox 5.0
    mozilla firefox 4.0 beta7
    mozilla firefox 4.0 beta8
    mozilla firefox 4.0 beta9
    mozilla firefox 4.0 beta10
    mozilla firefox 4.0 beta12
    mozilla firefox 4.0 beta11
    mozilla firefox 6.0
    mozilla firefox 3.6.18
    mozilla firefox 3.6.19
    mozilla firefox 7.0
    mozilla firefox 3.6.23
    mozilla firefox 8.0