Lucene search
Ubuntu.comUB:CVE-2009-3986HistoryDec 15, 2009 - 12:00 a.m.
CVE-2009-3986
2009-12-1500:00:00
ubuntu.com
ubuntu.com
6
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.5%
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before
2.0.1, allows remote attackers to execute arbitrary JavaScript with chrome
privileges by leveraging a reference to a chrome window from a content
window, related to the window.opener property.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | seamonkey | <Β 2.0.8+build1+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | seamonkey | <Β 2.0.8+build1+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.10 | noarch | seamonkey | <Β 2.0.8+build1+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | seamonkey | <Β 2.0.8+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | xulrunner-1.9 | <Β 1.9.0.16+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | xulrunner-1.9 | <Β 1.9.0.16+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9 | <Β 1.9.0.16+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9.1 | <Β 1.9.1.6+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.10 | noarch | xulrunner-1.9.1 | <Β 1.9.1.6+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
Related
seebug
seebug
Firefox window.openerε±ζ§ChromeζιζεζΌζ΄
2009-12-20 00:00:00
mozilla
mozilla
Privilege escalation via chrome window.opener β Mozilla
2009-12-15 00:00:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2009-70
2009-12-17 00:00:00
Mozilla Firefox multiple security vulnerabilities
2009-12-17 00:00:00
veracode
veracode
Remote Code Execution
2020-04-10 00:41:44
prion
prion
Code injection
2009-12-17 17:30:00
cve
cve
CVE-2009-3986
2009-12-17 17:30:00
openvas
openvas
Ubuntu USN-873-1 (xulrunner-1.9)
2009-12-30 00:00:00
Debian Security Advisory DSA 1956-1 (xulrunner)
2009-12-30 00:00:00
Ubuntu Update for firefox-3.0, xulrunner-1.9 regression USN-877-1
2010-01-15 00:00:00
nessus
nessus
openSUSE Security Update : MozillaFirefox (MozillaFirefox-1727)
2009-12-23 00:00:00
openSUSE Security Update : MozillaFirefox (MozillaFirefox-1727)
2009-12-23 00:00:00
Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
debian
debian
[SECURITY] [DSA 1956-1] New xulrunner packages fix several vulnerabilities
2009-12-16 21:15:39
ubuntu
ubuntu
Firefox 3.0 and Xulrunner 1.9 vulnerabilities
2009-12-18 00:00:00
Firefox 3.0 and Xulrunner 1.9 regression
2010-01-08 00:00:00
Firefox 3.5 and Xulrunner 1.9.1 regression
2010-01-08 00:00:00
centos
centos
firefox, xulrunner security update
2009-12-18 02:04:10
oraclelinux
oraclelinux
firefox security update
2009-12-16 00:00:00
osv
osv
xulrunner - several vulnerabilities
2009-12-16 00:00:00
redhat
redhat
(RHSA-2009:1674) Critical: firefox security update
2009-12-16 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: seamonkey-2.0.1-1.fc12
2009-12-18 04:36:12
[SECURITY] Fedora 11 Update: gnome-python2-extras-2.25.3-10.fc11
2009-12-18 04:32:41
[SECURITY] Fedora 11 Update: xulrunner-1.9.1.6-1.fc11
2009-12-18 04:32:41
freebsd
freebsd
mozilla -- multiple vulnerabilities
2009-12-16 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-12-22 15:19:49
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.017 Low
EPSS
Percentile
87.5%
Related for UB:CVE-2009-3986