Описание
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 3.0.15+nobinonly-0ubuntu0.8.04.1 |
| intrepid | released | 3.0.15+nobinonly-0ubuntu0.8.10.1 |
| jaunty | released | 3.0.15+nobinonly-0ubuntu0.9.04.1 |
| karmic | DNE | |
| upstream | released | 3.0.15 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 3.6.3+nobinonly-0ubuntu4 |
| hardy | DNE | |
| intrepid | DNE | |
| jaunty | released | 3.5.4+nobinonly-0ubuntu0.9.04.1 |
| karmic | released | 3.5.4+nobinonly-0ubuntu0.9.10.1 |
| upstream | released | 3.5.4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 1.9.0.15+nobinonly-0ubuntu0.8.04.1 |
| intrepid | released | 1.9.0.15+nobinonly-0ubuntu0.8.10.1 |
| jaunty | released | 1.9.0.15+nobinonly-0ubuntu0.9.04.1 |
| karmic | DNE | |
| upstream | released | 1.9.0.15 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| intrepid | DNE | |
| jaunty | released | 1.9.1.4+nobinonly-0ubuntu0.9.04.3 |
| karmic | released | 1.9.1.4+nobinonly-0ubuntu0.9.10.1 |
| upstream | released | 1.9.1.4 |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x ...
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.
4.3 Medium
CVSS2