5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.027 Low
EPSS
Percentile
90.5%
Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote
attackers to read form history by forging mouse and keyboard events that
leverage the auto-fill feature to populate form fields, in an
attacker-readable form, with history entries.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 9.04 | noarch | firefox-3.5 | <Β 3.5.4+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.10 | noarch | firefox-3.5 | <Β 3.5.4+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9.1 | <Β 1.9.1.4+nobinonly-0ubuntu0.9.04.3 | UNKNOWN |
ubuntu | 9.10 | noarch | xulrunner-1.9.1 | <Β 1.9.1.4+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |