CVE-2011-4688 — Vulnetix

Try Vulnetix Request Demo

CVE-2011-4688 PUBLISHED CVSS 5 MEDIUM

Mozilla Firefox 8.0.1 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.

EPSS 0.24% · 47.2th percentile

Risk Scores

CVSS v2.0

5

EPSS Score

0.24%

47.2th percentile

Affected Products

Vendor	Product	Versions
mozilla	firefox	0, 8.0
n/a	n/a	n/a

Timeline

Dec 7, 2011 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

47090 third-party-advisory
http://lcamtuf.coredump.cx/cachetime/ url
oval:org.mitre.oval:def:13770 vdb
https://nvd.nist.gov/vuln/detail/CVE-2011-4688 advisory
http://lcamtuf.coredump.cx/cachetime url

Open in Interactive Console →