Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2010-3773
HistoryDec 09, 2010 - 12:00 a.m.

CVE-2010-3773

2010-12-0900:00:00
ubuntu.com
ubuntu.com
14

0.018 Low

EPSS

Percentile

88.3%

JSON

Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before
2.0.11, when the XMLHttpRequestSpy module in the Firebug add-on is used,
does not properly handle interaction between the XMLHttpRequestSpy object
and chrome privileged objects, which allows remote attackers to execute
arbitrary JavaScript via a crafted HTTP response. NOTE: this vulnerability
exists because of an incomplete fix for CVE-2010-0179.

Notes

Author Note
jdstrand Ubuntu 11.04 (Natty Narwhal) has 4.0b7. Fixes will be in 4.0b8.
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchfirefox< 3.6.13+build3+nobinonly-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchfirefox< 3.6.13+build3+nobinonly-0ubuntu0.10.10.1UNKNOWN
ubuntu8.04noarchfirefox-3.0< 3.6.13+build3+nobinonly-0ubuntu0.8.04.1UNKNOWN
ubuntu9.10noarchfirefox-3.5< 3.6.13+build3+nobinonly-0ubuntu0.9.10.1UNKNOWN
ubuntu8.04noarchseamonkey< 2.0.11+build1+nobinonly-0ubuntu0.8.04.1UNKNOWN
ubuntu9.10noarchseamonkey< 2.0.11+build1+nobinonly-0ubuntu0.9.10.1UNKNOWN
ubuntu10.04noarchseamonkey< 2.0.11+build1+nobinonly-0ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchseamonkey< 2.0.11+build1+nobinonly-0ubuntu0.10.10.1UNKNOWN
ubuntu8.04noarchxulrunner-1.9.2< 1.9.2.13+build3+nobinonly-0ubuntu0.8.04.1UNKNOWN
ubuntu9.10noarchxulrunner-1.9.2< 1.9.2.13+build3+nobinonly-0ubuntu0.9.10.1UNKNOWN
Rows per page:
1-10 of 121

Related

veracode 2
prion 2
mozilla 2
cve 2
securityvulns 6
cvelist 2
nessus 68
ubuntucve 1
openvas 80
redhat 2
centos 2
debian 5
suse 2
freebsd 2
osv 2
oraclelinux 2
ubuntu 3
fedora 14
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:52:33
Privilege Escalation
2020-04-10 00:45:25
prion
prion
Design/Logic Flaw
2010-12-10 19:00:00
Code injection
2010-04-05 17:30:00
mozilla
mozilla
Incomplete fix for CVE-2010-0179 — Mozilla
2010-12-09 00:00:00
Arbitrary code execution with Firebug XMLHttpRequestSpy — Mozilla
2010-03-30 00:00:00
cve
cve
CVE-2010-3773
2010-12-10 19:00:00
CVE-2010-0179
2010-04-05 17:30:00
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2010-82
2010-12-10 00:00:00
Mozilla Foundation Security Advisory 2010-21
2010-04-06 00:00:00
[SECURITY] [DSA 2027-1] New xulrunner packages fix several vulnerabilities
2010-04-06 00:00:00
cvelist
cvelist
CVE-2010-3773
2010-12-10 18:00:00
CVE-2010-0179
2010-04-05 17:00:00
nessus
nessus
Mozilla Firefox 3.6.x < 3.6.13 Multiple Vulnerabilities
2010-12-09 00:00:00
Mozilla Firefox < 3.5.16 Multiple Vulnerabilities
2010-12-10 00:00:00
SeaMonkey 2.0.x < 2.0.11 Multiple Vulnerabilities
2010-12-10 00:00:00
ubuntucve
ubuntucve
CVE-2010-0179
2010-04-05 00:00:00
openvas
openvas
Mozilla Products Firebug Code Execution Vulnerability (Windows)
2010-04-13 00:00:00
Mozilla Products Firebug Code Execution Vulnerability - Windows
2010-04-13 00:00:00
RedHat Update for firefox RHSA-2010:0966-01
2010-12-23 00:00:00
redhat
redhat
(RHSA-2010:0966) Critical: firefox security update
2010-12-09 00:00:00
(RHSA-2010:0332) Critical: firefox security update
2010-03-30 00:00:00
centos
centos
firefox security update
2011-01-27 08:53:21
firefox security update
2010-04-06 21:01:59
debian
debian
[BSA-013] Security Update for iceweasel
2011-01-03 06:30:25
[SECURITY] [DSA 2027-1] New xulrunner packages fix several vulnerabilities
2010-04-03 17:50:39
[SECURITY] [DSA 2132-1] New xulrunner packages fix several vulnerabilities
2010-12-11 12:03:35
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2011-01-05 11:25:44
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey,mozilla-nss
2010-04-14 16:54:51
freebsd
freebsd
mozilla -- multiple vulnerabilities
2010-12-09 00:00:00
mozilla -- multiple vulnerabilities
2010-03-30 00:00:00
osv
osv
xulrunner - several vulnerabilities
2010-04-03 00:00:00
xulrunner - several vulnerabilities
2010-12-11 00:00:00
oraclelinux
oraclelinux
firefox security update
2010-03-31 00:00:00
firefox security update
2010-12-10 00:00:00
ubuntu
ubuntu
Firefox 3.0 and Xulrunner vulnerabilities
2010-04-09 00:00:00
Firefox 3.5 and Xulrunner vulnerabilities
2010-04-09 00:00:00
Firefox and Xulrunner vulnerabilities
2010-12-09 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: galeon-2.0.7-36.fc14.1
2010-12-10 20:27:49
[SECURITY] Fedora 13 Update: mozvoikko-1.0-17.fc13
2010-12-10 20:25:42
[SECURITY] Fedora 14 Update: xulrunner-1.9.2.13-1.fc14
2010-12-10 20:27:49

0.018 Low

EPSS

Percentile

88.3%

JSON
Related for UB:CVE-2010-3773
veracode2prion2mozilla2cve2securityvulns6cvelist2nessus68ubuntucve1openvas80redhat2centos2debian5suse2freebsd2osv2oraclelinux2ubuntu3fedora14