Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-5338

Опубликовано: 21 окт. 2007
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3

Описание

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

РелизСтатусПримечание
dapper

released

1.5.dfsg+1.5.0.14~prepatch071011b-0ubuntu1
devel

not-affected

edgy

released

2.0.0.8+0dfsg-0ubuntu0.6.10
feisty

released

2.0.0.8+1nobinonly-0ubuntu1
gutsy

released

2.0.0.8+2nobinonly-0ubuntu1
upstream

released

2.0.0.8

Показывать по

РелизСтатусПримечание
dapper

released

1.5.0.13+1.5.0.14b-0ubuntu0.6.06
edgy

released

1.5.0.13+1.5.0.14b-0ubuntu0.6.10
feisty

released

1.5.0.13+1.5.0.14b-0ubuntu0.7.04
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

gutsy

released

2.0.0.8~pre071022+nobinonly-0ubuntu0.7.10
upstream

released

2.0.0.8

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03299
Низкий

9.3 Critical

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-5338

redhat
почти 18 лет назад

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

nvd логотип

CVE-2007-5338

nvd
почти 18 лет назад

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

debian логотип

CVE-2007-5338

debian
почти 18 лет назад

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote ...

github логотип

GHSA-5q38-h7gf-fmjx

github
больше 3 лет назад

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

oracle-oval логотип

ELSA-2007-0979

oracle-oval
почти 18 лет назад

ELSA-2007-0979: Critical: firefox security update (CRITICAL)

EPSS

Процентиль: 87%
0.03299
Низкий

9.3 Critical

CVSS2