Lucene search
Ubuntu.comUB:CVE-2008-5019HistoryNov 13, 2008 - 12:00 a.m.
CVE-2008-5019
2008-11-1300:00:00
ubuntu.com
ubuntu.com
9
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
55.2%
The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x
before 2.0.0.18 allows remote attackers to violate the same origin policy
to conduct cross-site scripting (XSS) attacks and execute arbitrary
JavaScript with chrome privileges via unknown vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | firefox | < 1.5.dfsg+1.5.0.15~prepatch080614h-0ubuntu1 | UNKNOWN |
| ubuntu | 7.10 | noarch | firefox | < 2.0.0.18+nobinonly-0ubuntu0.7.10 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox | < 2.0.0.18+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox-3.0 | < 3.0.4+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | firefox-3.0 | < 3.0.4+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | seamonkey | < 1.1.15+nobinonly-0ubuntu0.8.04.2 | UNKNOWN |
| ubuntu | 8.10 | noarch | seamonkey | < 1.1.15+nobinonly-0ubuntu0.8.10.2 | UNKNOWN |
| ubuntu | 7.10 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | xulrunner | < 1.8.1.16+nobinonly-0ubuntu1 | UNKNOWN |
Related
prion
prion
Cross site scripting
2008-11-13 11:30:00
Design/Logic Flaw
2009-03-26 10:12:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2008-53
2008-11-14 00:00:00
Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
2008-11-14 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 00:27:17
cve
cve
CVE-2008-5019
2008-11-13 11:30:00
CVE-2008-4317
2009-03-26 10:12:00
mozilla
mozilla
XSS and JavaScript privilege escalation via session restore — Mozilla
2008-11-12 00:00:00
nessus
nessus
openSUSE Security Update : MozillaThunderbird (MozillaThunderbird-333)
2009-07-21 00:00:00
openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-5825)
2008-11-25 00:00:00
CentOS 4 / 5 : firefox (CESA-2008:0978)
2010-01-06 00:00:00
openvas
openvas
CentOS Update for firefox CESA-2008:0978 centos4 i386
2009-02-27 00:00:00
RedHat Update for firefox RHSA-2008:0978-01
2009-03-06 00:00:00
CentOS Update for firefox CESA-2008:0978 centos4 i386
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: epiphany-2.22.2-5.fc9
2008-11-14 12:52:41
[SECURITY] Fedora 9 Update: cairo-dock-1.6.3.1-1.fc9.1
2008-11-14 12:52:41
[SECURITY] Fedora 9 Update: google-gadgets-0.10.1-5.fc9.1
2008-11-14 12:52:42
centos
centos
devhelp, firefox, nss, xulrunner, yelp security update
2008-11-14 23:55:42
seamonkey security update
2008-11-13 06:38:44
seamonkey security update
2008-11-13 14:22:44
redhat
redhat
(RHSA-2008:0978) Critical: firefox security update
2008-11-12 00:00:00
(RHSA-2008:0977) Critical: seamonkey security update
2008-11-12 00:00:00
oraclelinux
oraclelinux
firefox security update
2008-11-13 00:00:00
seamonkey security update
2008-11-13 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2008-11-26 16:19:10
ubuntu
ubuntu
Firefox and xulrunner vulnerabilities
2008-11-17 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2008-11-13 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
55.2%
Related for UB:CVE-2008-5019