Описание
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 19.0~b6+build1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 19.0+build1-0ubuntu0.10.04.1 |
| oneiric | released | 19.0+build1-0ubuntu0.11.10.1 |
| precise | released | 19.0+build1-0ubuntu0.12.04.1 |
| quantal | released | 19.0+build1-0ubuntu0.12.10.1 |
| raring | not-affected | 19.0~b6+build1-0ubuntu1 |
| saucy | not-affected | 19.0~b6+build1-0ubuntu1 |
| upstream | released | 19.0 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| oneiric | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE | |
| upstream | released | 2.16 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 17.0.3+build1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 17.0.3+build1-0ubuntu0.10.04.1 |
| oneiric | released | 17.0.3+build1-0ubuntu0.11.10.1 |
| precise | released | 17.0.3+build1-0ubuntu0.12.04.1 |
| quantal | released | 17.0.3+build1-0ubuntu0.12.10.1 |
| raring | not-affected | 17.0.3+build1-0ubuntu1 |
| saucy | not-affected | 17.0.3+build1-0ubuntu1 |
| upstream | released | 17.0.3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE | |
| upstream | needs-triage |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors.
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors.
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey ...
Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote attackers to bypass intended access restrictions via unspecified vectors.
EPSS
9.3 Critical
CVSS2