Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24271

HistoryApr 10, 2020 - 12:50 a.m.

Arbitrary Code Execution

2020-04-1000:50:54

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

18

EPSS

0.023

Percentile

89.8%

seamonkey is vulnerable to arbitrary code excution. A flaw was found in the way SeaMonkey loaded Java LiveConnect scripts. Malicious web content could load a Java LiveConnect script in a way that would result in the plug-in object having elevated privileges, allowing it to execute Java code with the privileges of the user running SeaMonkey.

References

lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html

lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html

lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html

lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html

secunia.com/advisories/42716

secunia.com/advisories/42818

support.avaya.com/css/P8/documents/100124650

www.debian.org/security/2010/dsa-2132

www.mandriva.com/security/advisories?name=MDVSA-2010:251

www.mozilla.org/security/announce/2010/mfsa2010-79.html

www.redhat.com/support/errata/RHSA-2010-0966.html

www.redhat.com/support/errata/RHSA-2010-0967.html

www.securityfocus.com/bid/45355

www.securitytracker.com/id?1024848

www.ubuntu.com/usn/USN-1019-1

www.vupen.com/english/advisories/2011/0030

access.redhat.com/errata/RHSA-2010:0967

access.redhat.com/security/updates/classification/#critical

bugzilla.mozilla.org/show_bug.cgi?id=589041

bugzilla.mozilla.org/show_bug.cgi?id=610525

bugzilla.mozilla.org/show_bug.cgi?id=611897

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11666

EPSS

0.023

Percentile

89.8%

Related for VERACODE:24271

securityvulns2 prion1 cvelist1 cve1 ubuntucve1 seebug1 nvd1 mozilla1 redhat2 openvas58 nessus35 centos2 oraclelinux2 debian2 osv1 fedora14 ubuntu1 freebsd1 suse1 gentoo1