Information Disclosure Vulnerability in Netsurf Browser by Nettle
CVE-2012-0844

5.5MEDIUM

Key Information:

Vendor

Netsurf

Status
Netsurf
Vendor
CVE Published:
21 February 2020

What is CVE-2012-0844?

An information-disclosure vulnerability exists in Netsurf through version 2.8, where the cookie jar is world-readable. This flaw can allow unintended access to sensitive data stored in cookies, potentially leading to exposure of user information or authentication tokens to unauthorized users. Addressing this vulnerability is crucial for maintaining the integrity of user data security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

netsurf through 2.8

References

https://security-tracker.debian.org/tracker/CVE-2012-0844
x_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-0844
x_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/02/11/3
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.