Lucene search

PRIOn knowledge basePRION:CVE-2008-1235

HistoryMar 27, 2008 - 10:44 a.m.

Privilege escalation

2008-03-2710:44:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.428 Medium

EPSS

Percentile

97.2%

JSON

Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allows remote attackers to execute arbitrary code via unknown vectors that cause JavaScript to execute with the wrong principal, aka “Privilege escalation via incorrect principals.”

CPENameOperatorVersion
firefoxle2.0.0.12
firefoxeq0.1
firefoxeq0.8
firefoxeq1.5.0.6
firefoxeq2.0.0.2
firefoxeq1.5.0.10
firefoxeq1.5.0.3
firefoxeq1.5.0.11
firefoxeq1.0.2
firefoxeq1.5

Name	Operator	Version
firefox	le	2.0.0.12
firefox	eq	0.1
firefox	eq	0.8
firefox	eq	1.5.0.6
firefox	eq	2.0.0.2
firefox	eq	1.5.0.10
firefox	eq	1.5.0.3
firefox	eq	1.5.0.11
firefox	eq	1.0.2
firefox	eq	1.5

Rows per page:

1-10 of 1051

References

lists.opensuse.org/opensuse-security-announce/2008-04/msg00002.html

rhn.redhat.com/errata/RHSA-2008-0208.html

secunia.com/advisories/29391

secunia.com/advisories/29526

secunia.com/advisories/29539

secunia.com/advisories/29541

secunia.com/advisories/29547

secunia.com/advisories/29548

secunia.com/advisories/29550

secunia.com/advisories/29558

secunia.com/advisories/29560

secunia.com/advisories/29607

secunia.com/advisories/29616

secunia.com/advisories/29645

secunia.com/advisories/30016

secunia.com/advisories/30094

secunia.com/advisories/30105

secunia.com/advisories/30192

secunia.com/advisories/30327

secunia.com/advisories/30370

secunia.com/advisories/30620

secunia.com/advisories/31043

sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1

sunsolve.sun.com/search/document.do?assetkey=1-26-239546-1

wiki.rpath.com/wiki/Advisories:rPSA-2008-0128

www.debian.org/security/2008/dsa-1532

www.debian.org/security/2008/dsa-1534

www.debian.org/security/2008/dsa-1535

www.debian.org/security/2008/dsa-1574

www.gentoo.org/security/en/glsa/glsa-200805-18.xml

www.kb.cert.org/vuls/id/466521

www.mandriva.com/security/advisories?name=MDVSA-2008:080

www.mandriva.com/security/advisories?name=MDVSA-2008:155

www.mozilla.org/security/announce/2008/mfsa2008-14.html

www.redhat.com/support/errata/RHSA-2008-0207.html

www.redhat.com/support/errata/RHSA-2008-0209.html

www.securityfocus.com/archive/1/490196/100/0/threaded

www.securityfocus.com/bid/28448

www.securitytracker.com/id?1019694

www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.447313

www.ubuntu.com/usn/usn-592-1

www.ubuntu.com/usn/usn-605-1

www.us-cert.gov/cas/techalerts/TA08-087A.html

www.vupen.com/english/advisories/2008/0998/references

www.vupen.com/english/advisories/2008/0999/references

www.vupen.com/english/advisories/2008/1793/references

www.vupen.com/english/advisories/2008/2091/references

exchange.xforce.ibmcloud.com/vulnerabilities/41457

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10980

www.redhat.com/archives/fedora-package-announce/2008-May/msg00058.html

www.redhat.com/archives/fedora-package-announce/2008-May/msg00074.html

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.428 Medium

EPSS

Percentile

97.2%

JSON

Related for PRION:CVE-2008-1235