CVE-2008-5504

Опубликовано: 17 дек. 2008

Источник: debian

EPSS Низкий

Описание

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
iceweasel	fixed	3.0.1-1		package
xulrunner	fixed	1.9.0.1-1		package
xulrunner	not-affected		etch	package

Примечания

Original fix for CVE-2008-3836 was incomplete

EPSS

Процентиль: 87%

0.03696

Низкий

Связанные уязвимости

CVE-2008-5504

ubuntu

почти 17 лет назад

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

CVE-2008-5504

redhat

почти 17 лет назад

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

CVE-2008-5504

nvd

почти 17 лет назад

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

GHSA-hph5-qh8m-x8v8

github

больше 3 лет назад

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

EPSS

Процентиль: 87%

0.03696

Низкий