CVE-2012-4207

Public Exploit

Description

The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly handle a ~ (tilde) character in proximity to a chunk delimiter, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted document.

References

Link	Tags
http://osvdb.org/87587	vdb entry broken link
http://www.ubuntu.com/usn/USN-1638-3	third party advisory vendor advisory
http://secunia.com/advisories/51370	third party advisory
http://www.ubuntu.com/usn/USN-1638-2	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-updates/2012-11/msg00093.html	mailing list third party advisory vendor advisory
http://www.ubuntu.com/usn/USN-1636-1	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00022.html	mailing list third party advisory vendor advisory
http://rhn.redhat.com/errata/RHSA-2012-1483.html	third party advisory vendor advisory
http://www.mozilla.org/security/announce/2012/mfsa2012-101.html	vendor advisory
http://www.debian.org/security/2012/dsa-2584	third party advisory vendor advisory
http://www.palemoon.org/releasenotes-ng.shtml	broken link
http://rhn.redhat.com/errata/RHSA-2012-1482.html	third party advisory vendor advisory
http://secunia.com/advisories/51434	third party advisory
http://lists.opensuse.org/opensuse-updates/2012-11/msg00090.html	mailing list third party advisory vendor advisory
http://secunia.com/advisories/51439	third party advisory
http://secunia.com/advisories/51440	third party advisory
http://www.ubuntu.com/usn/USN-1638-1	third party advisory vendor advisory
http://www.securityfocus.com/bid/56632	vdb entry third party advisory
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00021.html	mailing list third party advisory vendor advisory
http://secunia.com/advisories/51359	third party advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2012:173	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-updates/2012-11/msg00092.html	mailing list third party advisory vendor advisory
http://secunia.com/advisories/51381	third party advisory
http://www.debian.org/security/2012/dsa-2583	third party advisory vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/80179	vdb entry third party advisory
http://secunia.com/advisories/51369	third party advisory
http://secunia.com/advisories/51360	third party advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=801681	issue tracking patch vendor advisory exploit
http://www.debian.org/security/2012/dsa-2588	third party advisory vendor advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16955	vdb entry third party advisory signature

Frequently Asked Questions

What is the severity of CVE-2012-4207?: CVE-2012-4207 has been scored as a medium severity vulnerability.
How to fix CVE-2012-4207?: To fix CVE-2012-4207, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2012-4207 being actively exploited in the wild?: It is possible that CVE-2012-4207 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-79 – Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

References

Frequently Asked Questions