exploitDog

CVE-2009-1841

Опубликовано: 11 июн. 2009

Источник: redhat

CVSS2: 6.8

EPSS Низкий

Описание

js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to execute arbitrary web script with the privileges of a chrome object, as demonstrated by the browser sidebar and the FeedWriter.

Ссылки на источники

Дополнительная информация

Статус:

Critical

https://bugzilla.redhat.com/show_bug.cgi?id=503583Firefox JavaScript arbitrary code execution

EPSS

Процентиль: 88%

0.04353

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2009-1841

ubuntu

около 16 лет назад

js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to execute arbitrary web script with the privileges of a chrome object, as demonstrated by the browser sidebar and the FeedWriter.

CVE-2009-1841

nvd

около 16 лет назад

js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to execute arbitrary web script with the privileges of a chrome object, as demonstrated by the browser sidebar and the FeedWriter.

CVE-2009-1841

debian

около 16 лет назад

js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3 ...

GHSA-73qh-76hj-pm8j

github

около 3 лет назад

js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to execute arbitrary web script with the privileges of a chrome object, as demonstrated by the browser sidebar and the FeedWriter.

ELSA-2009-1095

oracle-oval

около 16 лет назад

ELSA-2009-1095: firefox security update (CRITICAL)

EPSS

Процентиль: 88%

0.04353

Низкий

6.8 Medium

CVSS2