Lucene search
MitreCVE-2009-5017HistoryOct 03, 2022 - 4:24 p.m.
CVE-2009-5017
2022-10-0316:24:01
CWE-79
mitre
web.nvd.nist.gov
26
cve-2009-5017
mozilla firefox
xss
cross-site scripting
security vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
8.1
Confidence
Low
EPSS
0.002
Percentile
55.8%
Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong UTF-8 encoding, which makes it easier for remote attackers to bypass cross-site scripting (XSS) protection mechanisms via a crafted string, a different vulnerability than CVE-2010-1210.
Affected configurations
Node
mozillafirefoxRangeβ€3.6beta2
ORmozillafirefoxMatch3.6beta1
Related
ubuntucve
ubuntucve
CVE-2009-5017
2010-11-12 00:00:00
CVE-2010-1210
2010-07-23 00:00:00
cvelist
cvelist
CVE-2009-5017
2022-10-03 16:24:01
CVE-2010-1210
2010-07-30 20:00:00
nvd
nvd
CVE-2009-5017
2010-11-12 22:00:01
CVE-2010-1210
2010-07-30 20:30:01
prion
prion
Cross site scripting
2010-11-12 22:00:00
Cross site scripting
2010-07-30 20:30:00
veracode
veracode
Validation Bypass
2021-08-28 00:01:24
Authorization Bypass
2020-04-10 00:46:07
openvas
openvas
Mozilla Firefox Security Bypass Vulnerability (Windows)
2010-11-23 00:00:00
Mozilla Firefox Security Bypass Vulnerability - Windows
2010-11-23 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2010-44
2010-07-24 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2010-07-24 00:00:00
seebug
seebug
Mozilla Firefoxε符ζ ε°ιθ――ζΎη€ΊζΌζ΄
2010-07-27 00:00:00
mozilla
mozilla
cve
cve
CVE-2010-1210
2010-07-30 20:30:01
centos
centos
devhelp, esc, firefox, gnome, totem, xulrunner, yelp security update
2010-06-24 16:14:16
firefox security update
2010-08-06 23:15:15
firefox, xulrunner security update
2010-07-22 15:29:05
redhat
redhat
(RHSA-2010:0501) Critical: firefox security, bug fix, and enhancement update
2010-06-22 00:00:00
(RHSA-2010:0500) Critical: firefox security, bug fix, and enhancement update
2010-06-22 00:00:00
(RHSA-2010:0547) Critical: firefox security update
2010-07-20 00:00:00
oraclelinux
oraclelinux
firefox security, bug fix, and enhancement update
2010-06-23 00:00:00
firefox security, bug fix, and enhancement update
2010-06-23 00:00:00
firefox security update
2010-07-21 00:00:00
nessus
nessus
CentOS 4 : firefox (CESA-2010:0500)
2010-08-09 00:00:00
Oracle Linux 5 : firefox (ELSA-2010-0501)
2013-07-12 00:00:00
RHEL 5 : firefox (RHSA-2010:0501)
2010-06-23 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: thunderbird-3.1.1-1.fc13
2010-07-23 02:48:57
[SECURITY] Fedora 13 Update: sunbird-1.0-0.26.b2pre.fc13
2010-07-23 02:48:57
[SECURITY] Fedora 13 Update: firefox-3.6.7-1.fc13
2010-07-23 02:37:40
freebsd
freebsd
mozilla -- multiple vulnerabilities
2010-07-20 00:00:00
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2010-07-23 00:00:00
Firefox and Xulrunner vulnerability
2010-07-26 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2010-07-30 13:10:04
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
8.1
Confidence
Low
EPSS
0.002
Percentile
55.8%
Related for CVE-2009-5017