CVE-2009-3988

🗓️ 22 Feb 2010 13:00:01Reported by [email protected]Type

nvd

nvd🔗 web.nvd.nist.gov👁 18 Views

Mozilla Firefox and SeaMonkey Same Origin Policy bypass vulnerabilit

Reporter	Title	Published	Views	Family All 166
Tenable Nessus	Mozilla Firefox < 3.0.18 / 3.5.8 / 3.6 Multiple Vulnerabilities	18 Feb 201000:00	–	nessus
Tenable Nessus	SeaMonkey < 2.0.3 Multiple Vulnerabilities	18 Feb 201000:00	–	nessus
Tenable Nessus	Mozilla SeaMonkey < 2.0.3 Multiple Vulnerabilities	18 Feb 201000:00	–	nessus
Tenable Nessus	Mozilla Firefox < 3.0.18 / 3.5.8 / 3.6 Multiple Vulnerabilities	18 Feb 201000:00	–	nessus
Tenable Nessus	CentOS 4 / 5 : firefox (CESA-2010:0112)	18 Feb 201000:00	–	nessus
Tenable Nessus	CentOS 3 / 4 : seamonkey (CESA-2010:0113)	18 Feb 201000:00	–	nessus
Tenable Nessus	Debian DSA-1999-1 : xulrunner - several vulnerabilities	24 Feb 201000:00	–	nessus
Tenable Nessus	Fedora 12 : blam-1.8.5-22.fc12 / firefox-3.5.8-1.fc12 / galeon-2.0.7-20.fc12 / etc (2010-1727)	1 Jul 201000:00	–	nessus
Tenable Nessus	Fedora 12 : seamonkey-2.0.3-1.fc12 (2010-1932)	1 Jul 201000:00	–	nessus
Tenable Nessus	Fedora 11 : Miro-2.5.4-2.fc11 / blam-1.8.5-18.fc11 / chmsee-1.0.1-15.fc11 / eclipse-3.4.2-20.fc11 / etc (2010-1936)	1 Jul 201000:00	–	nessus

NVD

Node

mozilla firefoxRange≤3.0.17

OR

mozilla firefoxMatch3.0

OR

mozilla firefoxMatch3.0.1

OR

mozilla firefoxMatch3.0.2

OR

mozilla firefoxMatch3.0.3

OR

mozilla firefoxMatch3.0.4

OR

mozilla firefoxMatch3.0.5

OR

mozilla firefoxMatch3.0.6

OR

mozilla firefoxMatch3.0.7

OR

mozilla firefoxMatch3.0.8

OR

mozilla firefoxMatch3.0.9

OR

mozilla firefoxMatch3.0.10

OR

mozilla firefoxMatch3.0.11

OR

mozilla firefoxMatch3.0.12

OR

mozilla firefoxMatch3.0.13

OR

mozilla firefoxMatch3.0.14

OR

mozilla firefoxMatch3.0.15

OR

mozilla firefoxMatch3.5

OR

mozilla firefoxMatch3.5.1

OR

mozilla firefoxMatch3.5.2

OR

mozilla firefoxMatch3.5.3

OR

mozilla firefoxMatch3.5.4

OR

mozilla firefoxMatch3.5.5

OR

mozilla firefoxMatch3.5.6

OR

mozilla firefoxMatch3.5.7

OR

mozilla seamonkeyMatch2.0

OR

mozilla seamonkeyMatch2.0alpha_1

OR

mozilla seamonkeyMatch2.0alpha_2

OR

mozilla seamonkeyMatch2.0alpha_3

OR

mozilla seamonkeyMatch2.0beta_1

OR

mozilla seamonkeyMatch2.0beta_2

OR

mozilla seamonkeyMatch2.0rc1

OR

mozilla seamonkeyMatch2.0rc2

Source	Link
mozilla	www.mozilla.org/security/announce/2010/mfsa2010-04.html
redhat	www.redhat.com/support/errata/RHSA-2010-0112.html
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8355
ubuntu	www.ubuntu.com/usn/USN-895-1
ubuntu	www.ubuntu.com/usn/USN-896-1
bugzilla	www.bugzilla.mozilla.org/show_bug.cgi
secunia	www.secunia.com/advisories/38847
debian	www.debian.org/security/2010/dsa-1999
lists	www.lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9384

29 Apr 2026 01:13Current

5.8Medium risk

Vulners AI Score5.8

CVSS 25

EPSS0.00398

mozilla firefox seamonkey same origin policy bypass vulnerability cross-site scripting