6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.016 Low
EPSS
Percentile
87.0%
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before
2.0.1, allows remote attackers to associate spoofed content with an invalid
URL by setting document.location to this URL, and then writing arbitrary
web script or HTML to the associated blank document, a related issue to
CVE-2009-2654.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | seamonkey | <ย 2.0.8+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
ubuntu | 9.04 | noarch | seamonkey | <ย 2.0.8+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.10 | noarch | seamonkey | <ย 2.0.8+build1+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
ubuntu | 10.04 | noarch | seamonkey | <ย 2.0.8+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
ubuntu | 8.04 | noarch | xulrunner-1.9 | <ย 1.9.0.16+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
ubuntu | 8.10 | noarch | xulrunner-1.9 | <ย 1.9.0.16+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9 | <ย 1.9.0.16+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.04 | noarch | xulrunner-1.9.1 | <ย 1.9.1.6+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
ubuntu | 9.10 | noarch | xulrunner-1.9.1 | <ย 1.9.1.6+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |