Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-0416
HistoryFeb 12, 2008 - 12:00 a.m.

CVE-2008-0416

2008-02-1200:00:00
ubuntu.com
ubuntu.com
10

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.01 Low

EPSS

Percentile

82.9%

Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox
before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8
allow remote attackers to inject arbitrary web script or HTML via certain
character encodings, including (1) a backspace character that is treated as
whitespace, (2) 0x80 with Shift_JIS encoding, and (3) β€œzero-length
non-ASCII sequences” in certain Asian character sets.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchfirefox<Β 1.5.dfsg+1.5.0.15~prepatch080202a-0ubuntu1UNKNOWN
ubuntu6.10noarchfirefox<Β 2.0.0.12+0nobinonly+2-0ubuntu0.6.10UNKNOWN
ubuntu7.04noarchfirefox<Β 2.0.0.12+1nobinonly+2-0ubuntu0.7.4UNKNOWN
ubuntu7.10noarchfirefox<Β 2.0.0.12+2nobinonly+2-0ubuntu0.7.10UNKNOWN
ubuntu8.04noarchfirefox<Β 2.0.0.12+2nobinonly+2-0ubuntu3UNKNOWN
ubuntu8.04noarchseamonkey<Β 1.1.9+nobinonly-0ubuntu1UNKNOWN
ubuntu8.10noarchseamonkey<Β 1.1.9+nobinonly-0ubuntu1UNKNOWN
ubuntu7.10noarchxulrunner<Β 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1UNKNOWN
ubuntu8.04noarchxulrunner<Β 1.8.1.13+nobinonly-0ubuntu1UNKNOWN
ubuntu8.10noarchxulrunner<Β 1.8.1.13+nobinonly-0ubuntu1UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.01 Low

EPSS

Percentile

82.9%