CVE-2007-3844 : Detail

CVE-2007-3844

67.54%V3
Network
2007-08-07
23h11 +00:00
2018-10-15
18h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that inserts a (1) javascript: or (2) data: link into an about:blank document loaded by chrome via (a) the window.open function or (b) a content.location assignment, aka "Cross Context Scripting." NOTE: this issue is caused by a CVE-2007-3089 regression.

CVE Informations

Metrics

Metrics Score Severity CVSS Vector Source
V2 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Exploit information

Exploit Database EDB-ID : 30439

Publication date : 2007-07-30 22h00 +00:00
Author : moz_bug_r_a4
EDB Verified : Yes

source: https://www.securityfocus.com/bid/25142/info Mozilla Firefox, Thunderbird, and SeaMonkey are prone to a vulnerability that allows JavaScript to execute with unintended privileges. A malicious site may be able to cause the execution of a script with Chrome privileges. Attackers could exploit this issue to execute hostile script code with privileges that exceed those that were intended. Certain Firefox extensions may not intend 'about:blank' to execute script code with Chrome privileges. NOTE: This issue was introduced by the fix for MFSA 2007-20. The following proof of concept is available: w=open("about:blank");alert(1);u="javascript:alert(Components.stack);";w.document.body.innerHTML=u.link(u);w.focus();1 or top.opener.content.location="about:blank";alert(1);u="javascript:alert(Components.stack);";(w=top.opener.content).document.body.innerHTML=u.link(u);w.focus();1

Products Mentioned

Configuraton 0

Mozilla>>Firefox >> Version 2.0.0.5

Mozilla>>Seamonkey >> Version 1.1.3

Mozilla>>Thunderbird >> Version 2.0.0.5

References

http://www.ubuntu.com/usn/usn-503-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://www.mandriva.com/security/advisories?name=MDVSA-2008:047
Tags : vendor-advisory, x_refsource_MANDRIVA
http://www.vupen.com/english/advisories/2007/3587
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/27414
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26393
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26303
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2007/4256
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/26309
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27298
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=MDKSA-2007:152
Tags : vendor-advisory, x_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200708-09.xml
Tags : vendor-advisory, x_refsource_GENTOO
http://securitytracker.com/id?1018481
Tags : vdb-entry, x_refsource_SECTRACK
http://www.debian.org/security/2007/dsa-1345
Tags : vendor-advisory, x_refsource_DEBIAN
http://secunia.com/advisories/26288
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27327
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27276
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.debian.org/security/2007/dsa-1391
Tags : vendor-advisory, x_refsource_DEBIAN
http://www.debian.org/security/2007/dsa-1346
Tags : vendor-advisory, x_refsource_DEBIAN
http://www.redhat.com/support/errata/RHSA-2007-0980.html
Tags : vendor-advisory, x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2007:047
Tags : vendor-advisory, x_refsource_MANDRIVA
http://secunia.com/advisories/28135
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27356
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2007-0981.html
Tags : vendor-advisory, x_refsource_REDHAT
http://www.securityfocus.com/bid/25142
Tags : vdb-entry, x_refsource_BID
http://www.vupen.com/english/advisories/2008/0082
Tags : vdb-entry, x_refsource_VUPEN
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://www.ubuntu.com/usn/usn-493-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://secunia.com/advisories/26234
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.debian.org/security/2007/dsa-1344
Tags : vendor-advisory, x_refsource_DEBIAN
http://securitytracker.com/id?1018480
Tags : vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/27325
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2007-0979.html
Tags : vendor-advisory, x_refsource_REDHAT
http://securitytracker.com/id?1018479
Tags : vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/26258
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27326
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/28363
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26331
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26460
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27680
Tags : third-party-advisory, x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://secunia.com/advisories/26335
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26572
Tags : third-party-advisory, x_refsource_SECUNIA