SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2007-0778

Date: (C)2007-02-26 (M)2023-12-22

The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 can generate hash collisions that cause page data to be appended to the wrong page cache, which allows remote attackers to obtain sensitive information or enable further attack vectors when the target page is reloaded from the cache.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.4
Exploit Score: 4.9
Impact Score: 6.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: COMPLETE
Integrity: NONE
Availability: NONE

Reference:

SECTRACK-1017699

http://www.securityfocus.com/archive/1/461336/100/0/threaded

http://www.securityfocus.com/archive/1/461809/100/0/threaded

FEDORA-2007-281

FEDORA-2007-293

SSA:2007-066-03

SSA:2007-066-05

SUSE-SA:2007:019

SUSE-SA:2007:022

http://www.mozilla.org/security/announce/2007/mfsa2007-03.html

https://bugzilla.mozilla.org/show_bug.cgi?id=347852

https://issues.rpath.com/browse/RPL-1081

https://issues.rpath.com/browse/RPL-1103

mozilla-diskcache-information-disclosure(32671)

oval:org.mitre.oval:def:9151

cpe:/o:canonical:ubuntu_linux:5.10
cpe:/o:canonical:ubuntu_linux:6.06::~~lts~~~
cpe:/a:mozilla:seamonkey
cpe:/o:debian:debian_linux:3.1
...

© SecPod Technologies