Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-3177

Опубликовано: 21 окт. 2010
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, and SeaMonkey before 2.0.9, allow remote attackers to inject arbitrary web script or HTML via a crafted name of a (1) file or (2) directory on a Gopher server.

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

3.6.11+build3+nobinonly-0ubuntu0.10.10.1
hardy

ignored

end of life
jaunty

DNE

karmic

DNE

lucid

released

3.6.11+build3+nobinonly-0ubuntu0.10.04.1
maverick

released

3.6.11+build3+nobinonly-0ubuntu0.10.10.1
upstream

released

3.6.11

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

released

3.6.11+build3+nobinonly-0ubuntu0.8.04.1
jaunty

released

3.6.11+build3+nobinonly-0ubuntu0.9.04.1
karmic

DNE

lucid

DNE

maverick

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

jaunty

released

3.5.14+build3+nobinonly-0ubuntu0.9.04.1
karmic

released

3.6.11+build3+nobinonly-0ubuntu0.9.10.1
lucid

DNE

maverick

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

2.0.9+build1+nobinonly-0ubuntu0.10.10.1
hardy

released

2.0.9+build1+nobinonly-0ubuntu0.8.04.1
jaunty

released

2.0.9+build1+nobinonly-0ubuntu0.9.04.1
karmic

released

2.0.9+build1+nobinonly-0ubuntu0.9.10.1
lucid

released

2.0.9+build1+nobinonly-0ubuntu0.10.04.1
maverick

released

2.0.9+build1+nobinonly-0ubuntu0.10.10.1
upstream

released

2.0.9

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

jaunty

released

1.9.1.14+build4+nobinonly-0ubuntu0.9.04.1
karmic

released

1.9.1.14+build4+nobinonly-0ubuntu0.9.10.1
lucid

DNE

maverick

DNE

upstream

released

1.9.1.14

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

1.9.2.11+build3+nobinonly-0ubuntu0.10.10.1
hardy

released

1.9.2.11+build3+nobinonly-0ubuntu0.8.04.1
jaunty

released

1.9.2.11+build3+nobinonly-0ubuntu0.9.04.1
karmic

released

1.9.2.11+build3+nobinonly-0ubuntu0.9.10.1
lucid

released

1.9.2.11+build3+nobinonly-0ubuntu0.10.04.1
maverick

released

1.9.2.11+build3+nobinonly-0ubuntu0.10.10.1
upstream

released

1.9.2.11

Показывать по

Ссылки на источники

EPSS

Процентиль: 71%
0.00722
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2010-3177

redhat
больше 14 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, and SeaMonkey before 2.0.9, allow remote attackers to inject arbitrary web script or HTML via a crafted name of a (1) file or (2) directory on a Gopher server.

nvd логотип

CVE-2010-3177

nvd
больше 14 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, and SeaMonkey before 2.0.9, allow remote attackers to inject arbitrary web script or HTML via a crafted name of a (1) file or (2) directory on a Gopher server.

debian логотип

CVE-2010-3177

debian
больше 14 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the Gopher pars ...

github логотип

GHSA-hvcx-xp6v-2hrj

github
около 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, and SeaMonkey before 2.0.9, allow remote attackers to inject arbitrary web script or HTML via a crafted name of a (1) file or (2) directory on a Gopher server.

oracle-oval логотип

ELSA-2010-0782

oracle-oval
больше 14 лет назад

ELSA-2010-0782: firefox security update (CRITICAL)

EPSS

Процентиль: 71%
0.00722
Низкий

4.3 Medium

CVSS2