Описание
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7 allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP 0.9 errors, non-default ports, and content-sniffing.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 11.0+build1-0ubuntu4 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [11.0+build1-0ubuntu4]] |
| precise | not-affected | 11.0+build1-0ubuntu4 |
| trusty | not-affected | 11.0+build1-0ubuntu4 |
| trusty/esm | DNE | trusty was not-affected [11.0+build1-0ubuntu4] |
| upstream | released | 8.0 |
| vivid | not-affected | 11.0+build1-0ubuntu4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | firefox only |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [firefox only]] |
| precise | not-affected | firefox only |
| trusty | not-affected | firefox only |
| trusty/esm | DNE | trusty was not-affected [firefox only] |
| upstream | not-affected | firefox only |
| vivid | not-affected | firefox only |
Показывать по
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7 allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP 0.9 errors, non-default ports, and content-sniffing.
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7 allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP 0.9 errors, non-default ports, and content-sniffing.
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6 ...
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7 allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP 0.9 errors, non-default ports, and content-sniffing.
EPSS
4.3 Medium
CVSS2
6.1 Medium
CVSS3