The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted stylesheet.
lists.opensuse.org/opensuse-security-announce/2012-11/msg00021.html
lists.opensuse.org/opensuse-security-announce/2013-01/msg00022.html
lists.opensuse.org/opensuse-updates/2012-11/msg00090.html
lists.opensuse.org/opensuse-updates/2012-11/msg00093.html
rhn.redhat.com/errata/RHSA-2012-1482.html
secunia.com/advisories/51359
secunia.com/advisories/51369
secunia.com/advisories/51434
secunia.com/advisories/51439
www.mandriva.com/security/advisories?name=MDVSA-2012:173
www.mozilla.org/security/announce/2012/mfsa2012-104.html
www.palemoon.org/releasenotes-ng.shtml
www.securityfocus.com/bid/56646
www.ubuntu.com/usn/USN-1638-1
www.ubuntu.com/usn/USN-1638-2
www.ubuntu.com/usn/USN-1638-3
bugzilla.mozilla.org/show_bug.cgi?id=796866
exchange.xforce.ibmcloud.com/vulnerabilities/80182
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16833