Lucene search
Ubuntu.comUB:CVE-2015-0822HistoryFeb 25, 2015 - 12:00 a.m.
CVE-2015-0822
2015-02-2500:00:00
ubuntu.com
ubuntu.com
14
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.006
Percentile
78.3%
The Form Autocompletion feature in Mozilla Firefox before 36.0, Firefox ESR
31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to
read arbitrary files via crafted JavaScript code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 12.04 | noarch | firefox | < 36.0+build2-0ubuntu0.12.04.5 | UNKNOWN |
| ubuntu | 14.04 | noarch | firefox | < 36.0+build2-0ubuntu0.14.04.4 | UNKNOWN |
| ubuntu | 14.10 | noarch | firefox | < 36.0+build2-0ubuntu0.14.10.4 | UNKNOWN |
| ubuntu | 12.04 | noarch | thunderbird | < 1:31.5.0+build1-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | thunderbird | < 1:31.5.0+build1-0ubuntu0.14.04.1 | UNKNOWN |
| ubuntu | 14.10 | noarch | thunderbird | < 1:31.5.0+build1-0ubuntu0.14.10.1 | UNKNOWN |
References
Related
prion
prion
Authentication flaw
2015-02-25 11:59:00
nvd
nvd
CVE-2015-0822
2015-02-25 11:59:03
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-24) - Linux
2021-11-11 00:00:00
Oracle: Security Advisory (ELSA-2015-0642)
2015-10-06 00:00:00
Ubuntu: Security Advisory (USN-2506-1)
2015-03-04 00:00:00
cve
cve
CVE-2015-0822
2015-02-25 11:59:03
cvelist
cvelist
CVE-2015-0822
2015-02-25 11:00:00
mozilla
mozilla
Reading of local files through manipulation of form autocomplete — Mozilla
2015-02-24 00:00:00
veracode
veracode
Arbitrary File Read
2019-01-15 09:04:50
debian
debian
[SECURITY] [DSA 3179-1] icedove security update
2015-03-03 21:37:56
[SECURITY] [DSA 3174-1] iceweasel security update
2015-02-25 18:52:05
osv
osv
icedove - security update
2015-03-03 00:00:00
iceweasel - security update
2015-02-25 00:00:00
centos
centos
thunderbird security update
2015-03-19 19:31:21
firefox, xulrunner security update
2015-02-25 03:04:39
thunderbird security update
2015-02-25 20:08:47
oraclelinux
oraclelinux
thunderbird security update
2015-03-12 00:00:00
firefox security update
2015-02-25 00:00:00
thunderbird security update
2015-02-25 00:00:00
nessus
nessus
Debian DSA-3174-1 : iceweasel - security update
2015-02-26 00:00:00
Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20150225)
2015-02-26 00:00:00
Debian DSA-3179-1 : icedove - security update
2015-03-05 00:00:00
mageia
mageia
Updated firefox and thunderbird packages fix security vulnerabilities
2015-02-26 11:26:53
Updated iceape packages fix security vulnerabilities
2015-04-03 16:11:23
suse
suse
Security update for MozillaThunderbird (important)
2015-03-07 11:04:50
Security update for MozillaFirefox (important)
2015-03-03 16:04:59
Security update for Mozilla Firefox (important)
2015-03-07 01:05:04
redhat
redhat
(RHSA-2015:0265) Critical: firefox security update
2015-02-24 00:00:00
(RHSA-2015:0642) Important: thunderbird security update
2015-03-05 00:00:00
(RHSA-2015:0629) Critical: firefox security update
2015-03-05 13:49:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2015-03-03 00:00:00
Firefox regression
2015-03-09 00:00:00
Firefox vulnerabilities
2015-02-25 00:00:00
archlinux
archlinux
thunderbird: multiple issues
2015-02-25 00:00:00
firefox: multiple issues
2015-02-25 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-02-24 00:00:00
kaspersky
kaspersky
KLA10464 Multiple vulnerabilities in Mozilla products
2015-02-24 00:00:00
ibm
ibm
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2015-03-22 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-04-07 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
EPSS
0.006
Percentile
78.3%
Related for UB:CVE-2015-0822