Lucene search

[email protected]CVE-2009-4127

HistoryOct 03, 2022 - 4:24 p.m.

CVE-2009-4127

2022-10-0316:24:03

CWE-94

[email protected]

web.nvd.nist.gov

wikipedia toolbar

firefox

vulnerability

remote attackers

javascript

chrome privileges

cve-2009-4127

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.9%

JSON

Unspecified vulnerability in Wikipedia Toolbar extension before 0.5.9.2 for Firefox allows user-assisted remote attackers to execute arbitrary JavaScript with Chrome privileges via vectors involving unspecified Toolbar buttons and the eval function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

mozillafirefox

AND

wikipediawikipedia_toolbarRange≤0.5.9.1

wikipediawikipedia_toolbarMatch0.2

wikipediawikipedia_toolbarMatch0.4

wikipediawikipedia_toolbarMatch0.4.1

wikipediawikipedia_toolbarMatch0.4.2

wikipediawikipedia_toolbarMatch0.4.4

wikipediawikipedia_toolbarMatch0.4.5

wikipediawikipedia_toolbarMatch0.4.6

wikipediawikipedia_toolbarMatch0.4.9

wikipediawikipedia_toolbarMatch0.5

wikipediawikipedia_toolbarMatch0.5.0.1

wikipediawikipedia_toolbarMatch0.5.0.2

wikipediawikipedia_toolbarMatch0.5.0.3

wikipediawikipedia_toolbarMatch0.5.0.4

wikipediawikipedia_toolbarMatch0.5.0.6

wikipediawikipedia_toolbarMatch0.5.0.7

wikipediawikipedia_toolbarMatch0.5.0.8

wikipediawikipedia_toolbarMatch0.5.1

wikipediawikipedia_toolbarMatch0.5.2

wikipediawikipedia_toolbarMatch0.5.3

wikipediawikipedia_toolbarMatch0.5.4

wikipediawikipedia_toolbarMatch0.5.5

wikipediawikipedia_toolbarMatch0.5.6

wikipediawikipedia_toolbarMatch0.5.7

wikipediawikipedia_toolbarMatch0.5.8

wikipediawikipedia_toolbarMatch0.5.9

CPENameOperatorVersion
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbarle0.5.9.1
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.2
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.1
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.2
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.4
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.5
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.6
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.4.9
wikipedia:wikipedia_toolbarwikipedia wikipedia toolbareq0.5

CPE	Name	Operator	Version
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	le	0.5.9.1
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.2
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.1
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.2
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.4
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.5
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.6
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.4.9
wikipedia:wikipedia_toolbar	wikipedia wikipedia toolbar	eq	0.5

Rows per page:

1-10 of 261

References

secunia.com/advisories/37377

www.securityfocus.com/bid/37038

www.vupen.com/english/advisories/2009/3268

addons.mozilla.org/en-US/firefox/addons/versions/6401#version-0.5.9.2

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.9%

JSON

Related for CVE-2009-4127

cvelist1 prion1 nvd1 rosalinux1