Lucene search
Ubuntu.comUB:CVE-2009-1841HistoryJun 12, 2009 - 12:00 a.m.
CVE-2009-1841
2009-06-1200:00:00
ubuntu.com
ubuntu.com
18
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.019 Low
EPSS
Percentile
88.3%
js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before
3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows
remote attackers to execute arbitrary web script with the privileges of a
chrome object, as demonstrated by the browser sidebar and the FeedWriter.
Notes
| Author | Note |
|---|---|
| jdstrand | CVEs in Firefox are tracked in the xulrunner source packages. The mapping of xulrunner sources to firefox is: xulrunner (1.8.0): firefox (1.5) - Ubuntu 6.06 LTS xulrunner (1.8.1): firefox (2.0) - Ubuntu 6.10 - 8.04 LTS xulrunner-1.9: firefox-3.0 xulrunner-1.9.1: firefox-3.5 Ubuntu 6.06 LTS and 10.04 LTS uses the embedded xulrunner and not the system xulrunner-1.9.2, so it is tracked in the firefox source package. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.10 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 10.04 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 10.10 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 11.04 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 11.10 | noarch | seamonkey | <Β 1.1.17+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 8.04 | noarch | thunderbird | <Β 2.0.0.22+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | thunderbird | <Β 2.0.0.22+build1+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
Related
seebug
seebug
Mozilla FirefoxεSeaMonkey JavaScript ChromeηΉζζεζΌζ΄
2009-06-18 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:33:03
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-32
2009-06-14 00:00:00
Mozilla Firefox multiple security vulnerabilities
2009-06-14 00:00:00
mozilla
mozilla
JavaScript chrome privilege escalation β Mozilla
2009-06-11 00:00:00
prion
prion
Design/Logic Flaw
2009-06-12 21:30:00
cve
cve
CVE-2009-1841
2009-06-12 21:30:00
openvas
openvas
CentOS Security Advisory CESA-2009:1096 (seamonkey)
2009-06-15 00:00:00
CentOS Update for seamonkey CESA-2009:1096 centos3 i386
2011-08-09 00:00:00
CentOS Update for seamonkey CESA-2009:1096 centos3 i386
2011-08-09 00:00:00
oraclelinux
oraclelinux
seamonkey security update
2009-06-12 00:00:00
firefox security update
2009-06-12 00:00:00
nessus
nessus
Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64
2012-08-01 00:00:00
RHEL 4 : seamonkey (RHSA-2009:1096)
2009-06-12 00:00:00
Fedora 10 : seamonkey-1.1.17-1.fc10 (2009-7567)
2009-07-17 00:00:00
centos
centos
seamonkey security update
2009-06-12 21:25:45
firefox, xulrunner security update
2009-06-19 11:07:44
redhat
redhat
(RHSA-2009:1096) Critical: seamonkey security update
2009-06-11 00:00:00
(RHSA-2009:1095) Critical: firefox security update
2009-06-11 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: seamonkey-1.1.17-1.fc11
2009-07-16 07:11:14
[SECURITY] Fedora 10 Update: seamonkey-1.1.17-1.fc10
2009-07-16 06:57:32
[SECURITY] Fedora 10 Update: epiphany-extensions-2.24.3-2.fc10
2009-06-16 02:20:19
debian
debian
[SECURITY] [DSA 1820-1] New xulrunner packages fix several vulnerabilities
2009-06-18 14:13:03
[SECURITY] [DSA 1830-1] New icedove packages fix several vulnerabilities
2009-07-12 11:21:02
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2009-06-12 00:00:00
Thunderbird vulnerabilities
2009-06-25 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-06-16 16:38:22
freebsd
freebsd
mozilla -- multiple vulnerabilities
2009-06-11 00:00:00
osv
osv
xulrunner - several vulnerabilities
2009-06-18 00:00:00
icedove - several vulnerabilities
2009-07-12 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.019 Low
EPSS
Percentile
88.3%
Related for UB:CVE-2009-1841