Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2009-3375

Опубликовано: 27 окт. 2009
Источник: redhat
CVSS2: 4.3
EPSS Низкий

Описание

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=530167Firefox cross-origin data theft through document.getSelection()

EPSS

Процентиль: 63%
0.00462
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu
больше 15 лет назад

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.

nvd
больше 15 лет назад

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.

debian
больше 15 лет назад

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x ...

github
около 3 лет назад

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.

oracle-oval
больше 15 лет назад

ELSA-2009-1530: firefox security update (CRITICAL)

EPSS

Процентиль: 63%
0.00462
Низкий

4.3 Medium

CVSS2