Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mozillaMozilla FoundationMFSA2007-25
HistoryJul 17, 2007 - 12:00 a.m.

XPCNativeWrapper pollution — Mozilla

2007-07-1700:00:00
Mozilla Foundation
www.mozilla.org
8

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.716 High

EPSS

Percentile

98.0%

JSON

Mozilla security researchers shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.

CPENameOperatorVersion
firefoxlt2.0.0.5
seamonkeylt1.1.3

Related

ubuntucve 1
prion 1
cve 1
securityvulns 2
veracode 1
freebsd 1
nessus 40
seebug 1
openvas 49
fedora 10
oraclelinux 3
centos 4
redhat 3
osv 8
debian 8
ubuntu 1
gentoo 1
suse 3
ubuntucve
ubuntucve
CVE-2007-3738
2007-07-18 00:00:00
prion
prion
Design/Logic Flaw
2007-07-18 17:30:00
cve
cve
CVE-2007-3738
2007-07-18 17:30:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2007-25
2007-07-19 00:00:00
Mozilla Firefox, Thunderbird, Seamonkey multiple securityvulnerabilities
2007-07-19 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:17:17
freebsd
freebsd
mozilla -- multiple vulnerabilities
2007-07-17 00:00:00
nessus
nessus
FreeBSD : mozilla -- multiple vulnerabilities (e190ca65-3636-11dc-a697-000c6ec775d9)
2007-07-23 00:00:00
Fedora 7 : thunderbird-2.0.0.5-1.fc7 (2007-1180)
2007-11-06 00:00:00
RHEL 4 / 5 : thunderbird (RHSA-2007:0723)
2007-07-23 00:00:00
seebug
seebug
Mozilla Firefox 2.0.0.4多个远程安全漏洞
2007-07-19 00:00:00
openvas
openvas
FreeBSD Ports: firefox
2008-09-04 00:00:00
FreeBSD Ports: firefox
2008-09-04 00:00:00
Fedora Update for thunderbird FEDORA-2007-1180
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: thunderbird-1.5.0.12-2.fc6
2007-07-20 16:21:25
[SECURITY] Fedora 7 Update: thunderbird-2.0.0.5-1.fc7
2007-07-20 19:32:33
[SECURITY] Fedora 7 Update: firefox-2.0.0.5-1.fc7
2007-07-18 20:56:30
oraclelinux
oraclelinux
Moderate: thunderbird security update
2007-07-19 00:00:00
Critical: seamonkey security update
2007-07-19 00:00:00
Critical: firefox security update
2007-07-19 00:00:00
centos
centos
thunderbird security update
2007-07-19 19:16:54
seamonkey security update
2007-07-20 05:54:56
firefox security update
2007-07-19 13:36:22
redhat
redhat
(RHSA-2007:0723) Moderate: thunderbird security update
2007-07-18 00:00:00
(RHSA-2007:0724) Critical: firefox security update
2007-07-18 00:00:00
(RHSA-2007:0722) Critical: seamonkey security update
2007-07-18 00:00:00
osv
osv
xulrunner
2007-07-22 00:00:00
icedove - several vulnerabilities
2008-05-12 00:00:00
iceape - several
2007-07-23 00:00:00
debian
debian
[SECURITY] [DSA 1574-1] New icedove packages fix several vulnerabilities
2008-05-12 16:09:37
[SECURITY] [DSA 1338-1] New iceweasel packages fix several vulnerabilities
2007-07-23 17:27:52
[SECURITY] [DSA 1339-1] New iceape packages fix several vulnerabilities
2007-07-24 00:00:33
ubuntu
ubuntu
Firefox vulnerabilities
2007-07-20 00:00:00
gentoo
gentoo
Mozilla products: Multiple vulnerabilities
2007-08-14 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2007-08-02 16:31:06
remote code execution in MozillaFirefox,mozilla,seamonkey
2007-10-25 18:13:14
Firefox update to 31.1esr (important)
2014-09-09 18:04:16

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.716 High

EPSS

Percentile

98.0%

JSON
Related for MFSA2007-25
ubuntucve1prion1cve1securityvulns2veracode1freebsd1nessus40seebug1openvas49fedora10oraclelinux3centos4redhat3osv8debian8ubuntu1gentoo1suse3