Unrated severityNVD Advisory· Published Nov 19, 2012· Updated Apr 29, 2026

CVE-2011-2486

Description

nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool variable settings, which could prevent Firefox plugins from determining if they should run in Private Browsing mode and allow remote attackers to bypass intended access restrictions, as demonstrated using Flash.

Affected products

Nspluginwrapper/Nspluginwrapper
cpe:2.3:a:nspluginwrapper:nspluginwrapper:1.4.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securitytracker.com/idnvdPatch
lwn.net/Alerts/524725/nvd
rhn.redhat.com/errata/RHSA-2012-1459.htmlnvd
bugzilla.novell.com/show_bug.cginvd
bugzilla.redhat.com/show_bug.cginvd
github.com/davidben/nspluginwrapper/commit/7e4ab8e1189846041f955e6c83f72bc1624e7a98nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000