Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-3774

Опубликовано: 10 дек. 2010
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle (1) about:neterror and (2) about:certerror pages, which allows remote attackers to spoof the location bar via a crafted web site.

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

4.0~b8+nobinonly-0ubuntu3
hardy

ignored

end of life
karmic

DNE

lucid

released

3.6.13+build3+nobinonly-0ubuntu0.10.04.1
maverick

released

3.6.13+build3+nobinonly-0ubuntu0.10.10.1
upstream

released

3.6.13

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

released

3.6.13+build3+nobinonly-0ubuntu0.8.04.1
karmic

DNE

lucid

DNE

maverick

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

DNE

karmic

released

3.6.13+build3+nobinonly-0ubuntu0.9.10.1
lucid

DNE

maverick

DNE

upstream

needs-triage

Ubuntu source uses 3.6.x

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

2.0.11+build1+nobinonly-0ubuntu1
hardy

released

2.0.11+build1+nobinonly-0ubuntu0.8.04.1
karmic

released

2.0.11+build1+nobinonly-0ubuntu0.9.10.1
lucid

released

2.0.11+build1+nobinonly-0ubuntu0.10.04.1
maverick

released

2.0.11+build1+nobinonly-0ubuntu0.10.10.1
upstream

released

2.0.11

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

1.9.2.13+build3+nobinonly-0ubuntu1
hardy

released

1.9.2.13+build3+nobinonly-0ubuntu0.8.04.1
karmic

released

1.9.2.13+build3+nobinonly-0ubuntu0.9.10.1
lucid

released

1.9.2.13+build3+nobinonly-0ubuntu0.10.04.1
maverick

released

1.9.2.13+build3+nobinonly-0ubuntu0.10.10.1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%
0.01165
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2010-3774

redhat
почти 15 лет назад

The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle (1) about:neterror and (2) about:certerror pages, which allows remote attackers to spoof the location bar via a crafted web site.

nvd логотип

CVE-2010-3774

nvd
почти 15 лет назад

The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle (1) about:neterror and (2) about:certerror pages, which allows remote attackers to spoof the location bar via a crafted web site.

debian логотип

CVE-2010-3774

debian
почти 15 лет назад

The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h ...

github логотип

GHSA-g9p5-q9ww-v8w9

github
больше 3 лет назад

The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, does not properly handle (1) about:neterror and (2) about:certerror pages, which allows remote attackers to spoof the location bar via a crafted web site.

oracle-oval логотип

ELSA-2010-0966

oracle-oval
почти 15 лет назад

ELSA-2010-0966: firefox security update (CRITICAL)

EPSS

Процентиль: 78%
0.01165
Низкий

4.3 Medium

CVSS2