Описание
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-3370
- https://bugzilla.mozilla.org/show_bug.cgi?id=511615
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10836
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6455
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:294
- http://www.mozilla.org/security/announce/2009/mfsa2009-52.html
- http://www.vupen.com/english/advisories/2009/3334
EPSS
CVE ID
Связанные уязвимости
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote a ...
EPSS