Lucene search
Ubuntu.comUB:CVE-2008-4066HistorySep 24, 2008 - 12:00 a.m.
CVE-2008-4066
2008-09-2400:00:00
ubuntu.com
ubuntu.com
26
0.959 High
EPSS
Percentile
99.4%
Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows remote
attackers to bypass cross-site scripting (XSS) protection mechanisms and
conduct XSS attacks via HTML-escaped low surrogate characters that are
ignored by the HTML parser, as demonstrated by a βjav�ascriptβ
sequence, aka βHTML escaped low surrogates bug.β
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | firefox | <Β 1.5.dfsg+1.5.0.15~prepatch080614e-0ubuntu3 | UNKNOWN |
| ubuntu | 7.04 | noarch | firefox | <Β 2.0.0.17+0nobinonly-0ubuntu0.7.4 | UNKNOWN |
| ubuntu | 7.10 | noarch | firefox | <Β 2.0.0.17+1nobinonly-0ubuntu0.7.10 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox | <Β 2.0.0.17+1nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | firefox | <Β 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 10.10 | noarch | firefox | <Β 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | firefox | <Β 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox-3.0 | <Β 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | firefox-3.0 | <Β 3.0.3+build1+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 9.04 | noarch | firefox-3.0 | <Β 3.0.3+build1+nobinonly-0ubuntu1 | UNKNOWN |
Related
jvn
jvn
JVN#96950482: Mozilla Firefox vulnerable to cross-site scripting
2011-07-28 00:00:00
veracode
veracode
Arbitrary JavaScript Code Execution
2020-04-10 00:25:34
prion
prion
Cross site scripting
2008-09-24 20:37:00
cvelist
cvelist
CVE-2008-4066
2008-09-24 18:00:00
cve
cve
CVE-2008-4066
2008-09-24 20:37:00
mozilla
mozilla
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2008-43
2008-09-29 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2008-09-30 00:00:00
openvas
openvas
Mandriva Update for mozilla-thunderbird MDVSA-2008:206 (mozilla-thunderbird)
2009-04-09 00:00:00
CentOS Update for thunderbird CESA-2008:0908 centos4 x86_64
2009-02-27 00:00:00
RedHat Update for thunderbird RHSA-2008:0908-01
2009-03-06 00:00:00
nessus
nessus
openSUSE Security Update : MozillaFirefox (MozillaFirefox-233)
2009-07-21 00:00:00
RHEL 4 / 5 : thunderbird (RHSA-2008:0908)
2008-10-02 00:00:00
CentOS 4 / 5 : thunderbird (CESA-2008:0908)
2008-10-06 00:00:00
redhat
redhat
(RHSA-2008:0908) Moderate: thunderbird security update
2008-10-01 00:00:00
(RHSA-2008:0882) Critical: seamonkey security update
2008-09-23 00:00:00
centos
centos
thunderbird security update
2008-10-03 18:55:22
seamonkey security update
2008-09-24 14:22:25
seamonkey security update
2008-09-24 23:08:13
fedora
fedora
[SECURITY] Fedora 8 Update: seamonkey-1.1.12-1.fc8
2008-09-28 18:41:42
[SECURITY] Fedora 9 Update: seamonkey-1.1.12-1.fc9
2008-09-28 18:44:23
[SECURITY] Fedora 8 Update: thunderbird-2.0.0.18-1.fc8
2008-11-21 10:57:04
oraclelinux
oraclelinux
thunderbird security update
2008-10-01 00:00:00
seamonkey security update
2008-09-24 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2008-09-26 00:00:00
Firefox and xulrunner regression
2008-09-25 00:00:00
Firefox vulnerabilities
2008-09-24 00:00:00
debian
debian
[SECURITY] [DSA 1649-1] New iceweasel packages fix several vulnerabilities
2008-10-08 20:16:14
[SECURITY] [DSA 1669-1] New xulrunner packages fix several vulnerabilities
2008-11-23 20:30:10
osv
osv
iceweasel - several vulnerabilities
2008-10-08 00:00:00
xulrunner - several vulnerabilities
2008-11-23 00:00:00
seebug
seebug
Mozilla Firefox/SeaMonkey/Thunderbirdε€δΈͺθΏη¨ζΌζ΄
2008-09-25 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey,mozilla
2008-10-08 17:24:56
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00