Lucene search

K
cvelistMitreCVELIST:CVE-2010-2764
HistorySep 09, 2010 - 6:00 p.m.

CVE-2010-2764

2010-09-0918:00:00
mitre
www.cve.org

8.4 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.3%

Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 do not properly restrict read access to the statusText property of XMLHttpRequest objects, which allows remote attackers to discover the existence of intranet web servers via cross-origin requests.