[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

111017

 
 

909

 
 

86402

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Mozilla Thunderbird, Firefox and Seamonkey XSS and arbitrary injection Vulnerabilities

ID: oval:org.mitre.oval:def:7285Date: (C)2009-12-26   (M)2018-03-13
Class: VULNERABILITYFamily: windows




Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows 10
Product:
Mozilla Thunderbird
Mozilla SeaMonkey
Mozilla Firefox
Reference:
CVE-2009-1308
CVE    1
CVE-2009-1308
CPE    86
cpe:/a:mozilla:seamonkey
cpe:/a:mozilla:thunderbird:::x86
cpe:/a:mozilla:seamonkey:::x86
cpe:/a:mozilla:firefox:1.5:beta2
...

© SecPod Technologies