CVE-2015-0822

Опубликовано: 25 фев. 2015

Источник: debian

Описание

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
iceweasel	fixed	31.5.0esr-1		package
iceweasel	end-of-life		squeeze	package
icedove	fixed	31.5.0-1		package
icedove	end-of-life		squeeze	package

Примечания

https://www.mozilla.org/en-US/security/advisories/mfsa2015-24/

Связанные уязвимости

CVE-2015-0822

ubuntu

почти 11 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

CVE-2015-0822

redhat

почти 11 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

CVE-2015-0822

nvd

почти 11 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

GHSA-7pv8-rq9p-p2xx

github

больше 3 лет назад

The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to read arbitrary files via crafted JavaScript code.

ELSA-2015-0642

oracle-oval

почти 11 лет назад

ELSA-2015-0642: thunderbird security update (IMPORTANT)