Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-2933
HistoryJul 17, 2008 - 12:00 a.m.

CVE-2008-2933

2008-07-1700:00:00
ubuntu.com
ubuntu.com
6

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.012 Low

EPSS

Percentile

85.2%

Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets ‘|’
(pipe) characters in a command-line URI as requests to open multiple tabs,
which allows remote attackers to access chrome:i URIs, or read arbitrary
local files via manipulations involving a series of URIs that is not
entirely handled by a vector application, as exploited in conjunction with
CVE-2008-2540. NOTE: this issue exists because of an insufficient fix for
CVE-2005-2267.

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.012 Low

EPSS

Percentile

85.2%