Lucene search
Ubuntu.comUB:CVE-2008-5023HistoryNov 13, 2008 - 12:00 a.m.
CVE-2008-5023
2008-11-1300:00:00
ubuntu.com
ubuntu.com
17
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
82.0%
Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x
before 1.1.13 allows remote attackers to bypass the protection mechanism
for codebase principals and execute arbitrary script via the -moz-binding
CSS property in a signed JAR file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | firefox | < 1.5.dfsg+1.5.0.15~prepatch080614h-0ubuntu1 | UNKNOWN |
| ubuntu | 7.10 | noarch | firefox | < 2.0.0.18+nobinonly-0ubuntu0.7.10 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox | < 2.0.0.18+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | firefox-3.0 | < 3.0.4+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | firefox-3.0 | < 3.0.4+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | seamonkey | < 1.1.15+nobinonly-0ubuntu0.8.04.2 | UNKNOWN |
| ubuntu | 8.10 | noarch | seamonkey | < 1.1.15+nobinonly-0ubuntu0.8.10.2 | UNKNOWN |
| ubuntu | 7.10 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | xulrunner | < 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | xulrunner | < 1.8.1.16+nobinonly-0ubuntu1 | UNKNOWN |
Related
cve
cve
CVE-2008-5023
2008-11-13 11:30:00
cvelist
cvelist
CVE-2008-5023
2008-11-13 11:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:27:21
prion
prion
Authentication flaw
2008-11-13 11:30:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2008-57
2008-11-14 00:00:00
Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
2008-11-14 00:00:00
mozilla
mozilla
openvas
openvas
CentOS Update for firefox CESA-2008:0978 centos4 i386
2009-02-27 00:00:00
Debian Security Advisory DSA 1671-1 (iceweasel)
2008-12-03 00:00:00
RedHat Update for firefox RHSA-2008:0978-01
2009-03-06 00:00:00
nessus
nessus
CentOS 4 / 5 : firefox (CESA-2008:0978)
2010-01-06 00:00:00
Oracle Linux 5 : firefox (ELSA-2008-0978)
2013-07-12 00:00:00
Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
debian
debian
[SECURITY] [DSA 1671-1] New iceweasel packages fix several vulnerabilities
2008-11-24 21:36:45
osv
osv
iceweasel - several vulnerabilities
2008-11-24 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: epiphany-2.22.2-5.fc9
2008-11-14 12:52:41
[SECURITY] Fedora 9 Update: cairo-dock-1.6.3.1-1.fc9.1
2008-11-14 12:52:41
[SECURITY] Fedora 9 Update: google-gadgets-0.10.1-5.fc9.1
2008-11-14 12:52:42
centos
centos
devhelp, firefox, nss, xulrunner, yelp security update
2008-11-14 23:55:42
seamonkey security update
2008-11-13 06:38:44
seamonkey security update
2008-11-13 14:22:44
oraclelinux
oraclelinux
firefox security update
2008-11-13 00:00:00
seamonkey security update
2008-11-13 00:00:00
redhat
redhat
(RHSA-2008:0978) Critical: firefox security update
2008-11-12 00:00:00
(RHSA-2008:0977) Critical: seamonkey security update
2008-11-12 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2008-11-13 00:00:00
ubuntu
ubuntu
Firefox and xulrunner vulnerabilities
2008-11-17 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
82.0%
Related for UB:CVE-2008-5023