Unrated severityNVD Advisory· Published Dec 7, 2011· Updated Jun 16, 2026
CVE-2011-4688
CVE-2011-4688
Description
Mozilla Firefox 8.0.1 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=8.0.1
- cpe:2.3:a:mozilla:firefox:8.0:*:*:*:*:*:*:*
- (no CPE)range: <=8.0.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.