Описание
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 5.0~b2+build1+nobinonly-0ubuntu2 |
| hardy | ignored | end of life |
| lucid | released | 3.6.17+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.6.17+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | not-affected | 4.0+nobinonly-0ubuntu3 |
| oneiric | not-affected | 5.0~b2+build1+nobinonly-0ubuntu2 |
| precise | not-affected | 5.0~b2+build1+nobinonly-0ubuntu2 |
| quantal | not-affected | 5.0~b2+build1+nobinonly-0ubuntu2 |
| raring | not-affected | 5.0~b2+build1+nobinonly-0ubuntu2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 3.6.17+build3+nobinonly-0ubuntu0.8.04.1 |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | released | 3.6.17+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | released | 3.1.10+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.1.10+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 3.1.10+build1+nobinonly-0ubuntu0.11.04.1 |
| oneiric | not-affected | |
| precise | not-affected | |
| quantal | not-affected | |
| raring | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | released | 1.9.2.17+build3+nobinonly-0ubuntu0.8.04.1 |
| karmic | released | 1.9.2.17+build3+nobinonly-0ubuntu0.9.10.1 |
| lucid | released | 1.9.2.17+build3+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 1.9.2.17+build3+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 1.9.2.17+build3+nobinonly-0ubuntu1 |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE |
Показывать по
5 Medium
CVSS2
Связанные уязвимости
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls.
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls.
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey b ...
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls.
5 Medium
CVSS2