Lucene search
Ubuntu.comUB:CVE-2009-4629HistoryJan 29, 2010 - 12:00 a.m.
CVE-2009-4629
2010-01-2900:00:00
ubuntu.com
ubuntu.com
8
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.003
Percentile
68.1%
Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other
applications, performs DNS prefetching even when the app type is
APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote
attackers to determine the network location of the application’s user by
logging DNS requests, as demonstrated by DNS requests triggered by reading
text/plain e-mail messages in Thunderbird.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 9.04 | noarch | xulrunner-1.9.1 | < 1.9.1.9+nobinonly-0ubuntu0.9.04.1 | UNKNOWN |
| ubuntu | 9.10 | noarch | xulrunner-1.9.1 | < 1.9.1.9+nobinonly-0ubuntu0.9.10.1 | UNKNOWN |
Related
openvas
openvas
Mozilla Products Necko DNS Information Disclosure Vulnerability (Windows)
2010-02-04 00:00:00
Mozilla Products Necko DNS Information Disclosure Vulnerability (Linux)
2010-02-04 00:00:00
Mozilla Products Necko DNS Information Disclosure Vulnerability - Windows
2010-02-04 00:00:00
cvelist
cvelist
CVE-2009-4629
2010-01-29 18:00:00
nvd
nvd
CVE-2009-4629
2010-01-29 18:30:00
cve
cve
CVE-2009-4629
2010-01-29 18:30:00
prion
prion
Authentication flaw
2010-01-29 18:30:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.003
Percentile
68.1%
Related for UB:CVE-2009-4629