Описание
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| hardy | ignored | end of life |
| karmic | DNE | |
| lucid | released | 3.6.14+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.6.14+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| oneiric | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| precise | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
| quantal | not-affected | 4.0~b12+build1+nobinonly-0ubuntu3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 3.6.14+build3+nobinonly-0ubuntu0.8.04.1 |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | released | 3.6.14+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | not-affected | 2.0.13+nobinonly-0ubuntu1 |
| oneiric | not-affected | 2.0.13+nobinonly-0ubuntu1 |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 1.9.2.14+build3+nobinonly-0ubuntu0.8.04.1 |
| karmic | released | 1.9.2.14+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | released | 1.9.2.14+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 1.9.2.14+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | not-affected | 1.9.2.14+build3+nobinonly-0ubuntu1 |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey b ...
Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, does not properly handle certain recursive eval calls, which makes it easier for remote attackers to force a user to respond positively to a dialog question, as demonstrated by a question about granting privileges.
ELSA-2011-0310: firefox security and bug fix update (CRITICAL)
EPSS
6.8 Medium
CVSS2