Lucene search
Ubuntu.comUB:CVE-2009-3375HistoryOct 29, 2009 - 12:00 a.m.
CVE-2009-3375
2009-10-2900:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.008
Percentile
81.9%
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x
before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers
to bypass the Same Origin Policy and read an arbitrary content selection
via the document.getSelection function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | firefox-3.0 | <Β 3.0.15+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | firefox-3.0 | <Β 3.0.15+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | firefox-3.0 | <Β 3.0.15+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | firefox-3.5 | <Β 3.5.4+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.10 | noarch | firefox-3.5 | <Β 3.5.4+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | xulrunner-1.9 | <Β 1.9.0.15+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | xulrunner-1.9 | <Β 1.9.0.15+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9 | <Β 1.9.0.15+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9.1 | <Β 1.9.1.4+nobinonly-0ubuntu0.9.04.3 | UNKNOWN |
| ubuntu | 9.10 | noarch | xulrunner-1.9.1 | <Β 1.9.1.4+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
Related
nvd
nvd
CVE-2009-3375
2009-10-29 14:30:00
veracode
veracode
Information Disclosure
2020-04-10 00:36:53
mozilla
mozilla
Cross-origin data theft through document.getSelection() β Mozilla
2009-10-27 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-61
2009-10-28 00:00:00
Mozilla Firefox / Seamonkey multiple security vulnerabilities
2009-11-05 00:00:00
cvelist
cvelist
CVE-2009-3375
2009-10-29 14:00:00
cve
cve
CVE-2009-3375
2009-10-29 14:30:00
prion
prion
Design/Logic Flaw
2009-10-29 14:30:00
seebug
seebug
Firefox document.getSelectθ·¨εδΏ‘ζ―ζ³ι²ζΌζ΄
2009-11-03 00:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1531 (seamonkey)
2009-11-11 00:00:00
CentOS Security Advisory CESA-2009:1531 (seamonkey)
2009-11-11 00:00:00
CentOS Update for seamonkey CESA-2009:1531 centos3 i386
2011-08-09 00:00:00
nessus
nessus
Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64
2012-08-01 00:00:00
Fedora 11 : Miro-2.5.2-5.fc11 / blam-1.8.5-15.fc11 / chmsee-1.0.1-12.fc11 / eclipse-3.4.2-17.fc11 / etc (2009-10878)
2009-10-29 00:00:00
Debian DSA-1922-1 : xulrunner - several vulnerabilities
2010-02-24 00:00:00
oraclelinux
oraclelinux
seamonkey security update
2009-10-28 00:00:00
firefox security update
2009-10-28 00:00:00
centos
centos
seamonkey security update
2009-10-28 13:15:48
firefox, nspr security update
2009-10-28 13:44:04
redhat
redhat
(RHSA-2009:1531) Critical: seamonkey security update
2009-10-27 00:00:00
(RHSA-2009:1530) Critical: firefox security update
2009-10-27 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: firefox-3.5.4-1.fc11
2009-10-29 02:59:35
[SECURITY] Fedora 11 Update: mozvoikko-0.9.7-0.8.rc1.fc11
2009-10-29 02:59:35
[SECURITY] Fedora 11 Update: kazehakase-0.5.8-2.fc11.1
2009-10-29 02:59:35
debian
debian
[SECURITY] [DSA 1922-1] New xulrunner packages fix several vulnerabilities
2009-10-28 21:13:30
osv
osv
xulrunner - several vulnerabilities
2009-10-28 00:00:00
vmware
vmware
ESX Service Console and vMA updates for nss and nspr
2010-03-03 00:00:00
ESX Service Console and vMA updates for nss and nspr
2010-03-03 00:00:00
ubuntu
ubuntu
Firefox and Xulrunner regression
2009-11-11 00:00:00
Firefox and Xulrunner vulnerabilities
2009-10-31 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-11-04 14:24:35
freebsd
freebsd
mozilla -- multiple vulnerabilities
2009-10-27 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.008
Percentile
81.9%
Related for UB:CVE-2009-3375