ID CVE-2009-4129 Type cve Reporter NVD Modified 2017-08-16T21:31:27
Description
Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.
{"id": "CVE-2009-4129", "bulletinFamily": "NVD", "title": "CVE-2009-4129", "description": "Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.", "published": "2009-12-14T12:30:00", "modified": "2017-08-16T21:31:27", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4129", "reporter": "NVD", "references": ["http://archives.neohapsis.com/archives/bugtraq/2009-12/0104.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/54611", "http://securitytracker.com/id?1023287", "http://www.securityfocus.com/bid/37230"], "cvelist": ["CVE-2009-4129"], "type": "cve", "lastseen": "2017-08-17T11:14:33", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:mozilla:firefox"], "cvelist": ["CVE-2009-4129"], "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "description": "Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.", "edition": 1, "enchantments": {}, "hash": "ba5c4458a91f84e92d16df4b7243ae517e240edc0cebbf05fcea68c87c5ed396", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "30fd9aa930fa1659ec199621a2c34944", "key": "cvelist"}, {"hash": "6fa67b862745a601dd203cc0371793bf", "key": "href"}, {"hash": "7db5474e5dc4c593cca49a6813c10dd3", "key": "description"}, {"hash": "ff40bcbe8dac11fce12becae8749491d", "key": "modified"}, {"hash": "ba9608c913231bea1110c47730a9ae33", "key": "references"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "5b98e2f88129e9f722a06a26f9489aea", "key": "cpe"}, {"hash": "8a28889787508bab047d7fa94ce9a58c", "key": "cvss"}, {"hash": "d9f6b9bb12ac004b06aca5078978c3bc", "key": "published"}, {"hash": "f1f14942af9ef6595738200071f6a974", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4129", "id": "CVE-2009-4129", "lastseen": "2016-09-03T13:05:28", "modified": "2009-12-15T00:00:00", "objectVersion": "1.2", "published": "2009-12-14T12:30:00", "references": ["http://archives.neohapsis.com/archives/bugtraq/2009-12/0104.html", "http://securitytracker.com/id?1023287", "http://www.securityfocus.com/bid/37230", "http://xforce.iss.net/xforce/xfdb/54611"], "reporter": "NVD", "scanner": [], "title": "CVE-2009-4129", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T13:05:28"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "5b98e2f88129e9f722a06a26f9489aea"}, {"key": "cvelist", "hash": "30fd9aa930fa1659ec199621a2c34944"}, {"key": "cvss", "hash": "8a28889787508bab047d7fa94ce9a58c"}, {"key": "description", "hash": "7db5474e5dc4c593cca49a6813c10dd3"}, {"key": "href", "hash": "6fa67b862745a601dd203cc0371793bf"}, {"key": "modified", "hash": "b85085d4791d5467e2948a61e9c49638"}, {"key": "published", "hash": "d9f6b9bb12ac004b06aca5078978c3bc"}, {"key": "references", "hash": "0fb7bb7fae11575530f9e2377f0eb39e"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "f1f14942af9ef6595738200071f6a974"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "6460260df5c2a9463c410bbe993afd05909763752b4c5cc9ea31bd4562cf3088", "viewCount": 0, "enchantments": {"vulnersScore": 4.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:mozilla:firefox"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"result": {"openvas": [{"id": "OPENVAS:801093", "type": "openvas", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "published": "2009-12-17T00:00:00", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=801093", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "lastseen": "2017-07-02T21:14:00"}, {"id": "OPENVAS:801094", "type": "openvas", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "published": "2009-12-17T00:00:00", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=801094", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "lastseen": "2017-07-02T21:13:54"}, {"id": "OPENVAS:1361412562310801093", "type": "openvas", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "published": "2009-12-17T00:00:00", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801093", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "lastseen": "2018-04-06T11:38:33"}, {"id": "OPENVAS:1361412562310801094", "type": "openvas", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "published": "2009-12-17T00:00:00", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801094", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "lastseen": "2018-04-06T11:37:58"}]}}
