Lucene search

K
ubuntuUbuntuUSN-690-1
HistoryDec 17, 2008 - 12:00 a.m.

Firefox and xulrunner vulnerabilities

2008-12-1700:00:00
ubuntu.com
39

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.052

Percentile

93.1%

Releases

  • Ubuntu 8.10
  • Ubuntu 8.04

Packages

  • firefox-3.0 -
  • xulrunner-1.9 -

Details

Several flaws were discovered in the browser engine. These problems could allow
an attacker to crash the browser and possibly execute arbitrary code with user
privileges. (CVE-2008-5500, CVE-2008-5501, CVE-2008-5502)

It was discovered that Firefox did not properly handle persistent cookie data.
If a user were tricked into opening a malicious website, an attacker could
write persistent data in the user’s browser and track the user across browsing
sessions. (CVE-2008-5505)

Marius Schilder discovered that Firefox did not properly handle redirects to
an outside domain when an XMLHttpRequest was made to a same-origin resource.
It’s possible that sensitive information could be revealed in the
XMLHttpRequest response. (CVE-2008-5506)

Chris Evans discovered that Firefox did not properly protect a user’s data when
accessing a same-domain Javascript URL that is redirected to an unparsable
Javascript off-site resource. If a user were tricked into opening a malicious
website, an attacker may be able to steal a limited amount of private data.
(CVE-2008-5507)

Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Firefox
did not properly parse URLs when processing certain control characters.
(CVE-2008-5508)

Kojima Hajime discovered that Firefox did not properly handle an escaped null
character. An attacker may be able to exploit this flaw to bypass script
sanitization. (CVE-2008-5510)

Several flaws were discovered in the Javascript engine. If a user were tricked
into opening a malicious website, an attacker could exploit this to execute
arbitrary Javascript code within the context of another website or with chrome
privileges. (CVE-2008-5511, CVE-2008-5512)

Flaws were discovered in the session-restore feature of Firefox. If a user were
tricked into opening a malicious website, an attacker could exploit this to
perform cross-site scripting attacks or execute arbitrary Javascript code with
chrome privileges. (CVE-2008-5513)

OSVersionArchitecturePackageVersionFilename
Ubuntu8.10noarchfirefox-3.0< 3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchabrowser< 3.0-branding-3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchfirefox< 3.0-3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchfirefox< 3.0-branding-3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchfirefox< 3.0-dev-3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchfirefox< 3.0-gnome-support-3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchabrowser< 3.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchxulrunner-1.9< 1.9.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchxulrunner-1.9< dev-1.9.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Ubuntu8.10noarchxulrunner-1.9< gnome-support-1.9.0.5+nobinonly-0ubuntu0.8.10.1UNKNOWN
Rows per page:
1-10 of 171

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

9.8

Confidence

High

EPSS

0.052

Percentile

93.1%