Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24063

HistoryApr 10, 2020 - 12:45 a.m.

Privilege Escalation

2020-04-1000:45:25

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

35

EPSS

0.013

Percentile

85.9%

firefox is vulnerable to privilege escalation. The vulnerability exists when the Firebug add-on is in use. The XMLHttpRequestSpy module in the Firebug add-on exposes a Chrome privilege escalation flaw that could be used to execute arbitrary JavaScript with the privileges of the user running Firefox.

References

lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html

secunia.com/advisories/3924

secunia.com/advisories/39243

secunia.com/advisories/39308

secunia.com/advisories/39397

secunia.com/advisories/42818

securitytracker.com/id?1023783

support.avaya.com/css/P8/documents/100124650

ubuntu.com/usn/usn-921-1

www.debian.org/security/2010/dsa-2027

www.mandriva.com/security/advisories?name=MDVSA-2010:070

www.mandriva.com/security/advisories?name=MDVSA-2010:251

www.mozilla.org/security/announce/2010/mfsa2010-21.html

www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.19

www.redhat.com/security/updates/classification/#critical

www.redhat.com/support/errata/RHSA-2010-0332.html

www.securityfocus.com/bid/39124

www.vupen.com/english/advisories/2010/0748

www.vupen.com/english/advisories/2010/0764

www.vupen.com/english/advisories/2010/0781

www.vupen.com/english/advisories/2010/0849

www.vupen.com/english/advisories/2011/0030

access.redhat.com/errata/RHSA-2010:0332

bugzilla.mozilla.org/show_bug.cgi?id=504021

exchange.xforce.ibmcloud.com/vulnerabilities/57394

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6971

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9446

EPSS

0.013

Percentile

85.9%

Related for VERACODE:24063

nessus65 openvas72 cvelist2 mozilla2 cve2 nvd2 prion2 ubuntucve2 securityvulns5 veracode1 oraclelinux1 ubuntu2 centos2 redhat2 debian4 osv1 freebsd2 suse2 gentoo1