Lucene search
Ubuntu.comUB:CVE-2007-3656HistoryJul 10, 2007 - 12:00 a.m.
CVE-2007-3656
2007-07-1000:00:00
ubuntu.com
ubuntu.com
19
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.921
Percentile
99.0%
Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not perform
a security zone check when processing a wyciwyg URI, which allows remote
attackers to obtain sensitive information, poison the browser cache, and
possibly enable further attack vectors via (1) HTTP 302 redirect controls,
(2) XMLHttpRequest, or (3) view-source URIs.
Related
cvelist
cvelist
CVE-2007-3656
2007-07-10 19:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2007-24
2007-07-19 00:00:00
Mozilla Firefox cache crossite access
2007-07-19 00:00:00
ertificate spoofing with subjectAltName and domain name wildcards
2007-11-19 00:00:00
prion
prion
Design/Logic Flaw
2007-07-10 19:30:00
mozilla
mozilla
Unauthorized access to wyciwyg:// documents — Mozilla
2007-07-17 00:00:00
nvd
nvd
CVE-2007-3656
2007-07-10 19:30:00
checkpoint_advisories
checkpoint_advisories
veracode
veracode
HTML Injection
2020-04-10 00:17:21
cve
cve
CVE-2007-3656
2007-07-10 19:30:00
fedora
fedora
[SECURITY] Fedora 7 Update: yelp-2.18.1-5.fc7
2007-07-18 20:56:52
[SECURITY] Fedora 7 Update: firefox-2.0.0.5-1.fc7
2007-07-18 20:56:30
[SECURITY] Fedora 7 Update: epiphany-2.18.3-2.fc7
2007-07-18 20:55:58
nessus
nessus
Oracle Linux 4 / 5 : firefox (ELSA-2007-0724)
2013-07-12 00:00:00
Fedora 7 : seamonkey-1.1.3-1.fc7 (2007-1181)
2007-11-06 00:00:00
Fedora Core 6 : firefox-1.5.0.12-4.fc6 (2007-642)
2007-07-23 00:00:00
openvas
openvas
Fedora Update for epiphany-extensions FEDORA-2007-1155
2009-02-27 00:00:00
Fedora Update for seamonkey FEDORA-2007-1181
2009-02-27 00:00:00
Debian Security Advisory DSA 1339-1 (iceape)
2008-01-17 00:00:00
osv
osv
redhat
redhat
(RHSA-2007:0724) Critical: firefox security update
2007-07-18 00:00:00
(RHSA-2007:0722) Critical: seamonkey security update
2007-07-18 00:00:00
oraclelinux
oraclelinux
Critical: seamonkey security update
2007-07-19 00:00:00
Critical: firefox security update
2007-07-19 00:00:00
centos
centos
seamonkey security update
2007-07-20 05:54:56
seamonkey security update
2007-07-19 11:53:21
firefox security update
2007-07-19 13:36:22
debian
debian
[SECURITY] [DSA 1339-1] New iceape packages fix several vulnerabilities
2007-07-24 00:00:33
[SECURITY] [DSA 1338-1] New iceweasel packages fix several vulnerabilities
2007-07-23 17:27:52
[SECURITY] [DSA 1337-1] New xulrunner packages fix several vulnerabilities
2007-07-22 19:19:22
gentoo
gentoo
Mozilla products: Multiple vulnerabilities
2007-08-14 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2007-07-20 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2007-08-02 16:31:06
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.921
Percentile
99.0%
Related for UB:CVE-2007-3656