CVE-2015-0822

Опубликовано: 25 фев. 2015

Источник: debian

EPSS Низкий

Описание

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
iceweasel	fixed	31.5.0esr-1		package
iceweasel	end-of-life		squeeze	package
icedove	fixed	31.5.0-1		package
icedove	end-of-life		squeeze	package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2015-24/

EPSS

Процентиль: 70%

0.00637

Низкий

Связанные уязвимости

CVE-2015-0822

ubuntu

больше 10 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

CVE-2015-0822

redhat

больше 10 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

CVE-2015-0822

nvd

больше 10 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

GHSA-7pv8-rq9p-p2xx

github

больше 3 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

ELSA-2015-0642

oracle-oval

больше 10 лет назад

ELSA-2015-0642: thunderbird security update (IMPORTANT)

EPSS

Процентиль: 70%

0.00637

Низкий