Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, uses a random number generator that is seeded only once per browser session, which makes it easier for remote attackers to track a user, or trick a user into acting upon a spoofed pop-up message, by calculating the seed value, related to a "temporary footprint" and an "in-session phishing attack."
CVE Informations
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 4.9 | AV:N/AC:M/Au:S/C:P/I:P/A:N | [email protected] |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Products Mentioned
Configuraton 0
Mozilla>>Firefox >> Version 3.5
- Mozilla>>Firefox >> Version 3.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.1
- Mozilla>>Firefox >> Version 3.5.1 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.2
- Mozilla>>Firefox >> Version 3.5.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.3
- Mozilla>>Firefox >> Version 3.5.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.4
- Mozilla>>Firefox >> Version 3.5.4 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.5
- Mozilla>>Firefox >> Version 3.5.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.6
- Mozilla>>Firefox >> Version 3.5.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.7
- Mozilla>>Firefox >> Version 3.5.7 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.8
- Mozilla>>Firefox >> Version 3.5.8 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.9
- Mozilla>>Firefox >> Version 3.5.9 (Open CPE detail)
Configuraton 0
Mozilla>>Firefox >> Version 3.6
- Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
- Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
- Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.2
- Mozilla>>Firefox >> Version 3.6.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.3
- Mozilla>>Firefox >> Version 3.6.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.4
- Mozilla>>Firefox >> Version 3.6.4 (Open CPE detail)
Configuraton 0
Mozilla>>Seamonkey >> Version To (including) 2.0.4
- Mozilla>>Seamonkey >> Version - (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.2 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.3 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.4 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.5 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.6 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.7 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.8 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0.9 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.2 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.3 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.4 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.5 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.6 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.7 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.8 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.9 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.10 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.11 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.12 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.13 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.14 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.15 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.16 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.17 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.18 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1.19 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.5.0.8 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.5.0.9 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.5.0.10 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0.2 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0.3 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0.4 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0
- Mozilla>>Seamonkey >> Version 1.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.1
- Mozilla>>Seamonkey >> Version 1.0.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.2
- Mozilla>>Seamonkey >> Version 1.0.2 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.3
- Mozilla>>Seamonkey >> Version 1.0.3 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.4
- Mozilla>>Seamonkey >> Version 1.0.4 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.5
- Mozilla>>Seamonkey >> Version 1.0.5 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.6
- Mozilla>>Seamonkey >> Version 1.0.6 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.7
- Mozilla>>Seamonkey >> Version 1.0.7 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.8
- Mozilla>>Seamonkey >> Version 1.0.8 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.0.9
- Mozilla>>Seamonkey >> Version 1.0.9 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1
- Mozilla>>Seamonkey >> Version 1.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.1
- Mozilla>>Seamonkey >> Version 1.1.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.2
- Mozilla>>Seamonkey >> Version 1.1.2 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.3
- Mozilla>>Seamonkey >> Version 1.1.3 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.4
- Mozilla>>Seamonkey >> Version 1.1.4 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.5
- Mozilla>>Seamonkey >> Version 1.1.5 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.6
- Mozilla>>Seamonkey >> Version 1.1.6 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.7
- Mozilla>>Seamonkey >> Version 1.1.7 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.8
- Mozilla>>Seamonkey >> Version 1.1.8 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.9
- Mozilla>>Seamonkey >> Version 1.1.9 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.10
- Mozilla>>Seamonkey >> Version 1.1.10 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.11
- Mozilla>>Seamonkey >> Version 1.1.11 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.12
- Mozilla>>Seamonkey >> Version 1.1.12 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.13
- Mozilla>>Seamonkey >> Version 1.1.13 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.14
- Mozilla>>Seamonkey >> Version 1.1.14 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.15
- Mozilla>>Seamonkey >> Version 1.1.15 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.16
- Mozilla>>Seamonkey >> Version 1.1.16 (Open CPE detail)
Mozilla>>Seamonkey >> Version 1.1.17
- Mozilla>>Seamonkey >> Version 1.1.17 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0
- Mozilla>>Seamonkey >> Version 2.0 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0.1
- Mozilla>>Seamonkey >> Version 2.0.1 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0.2
- Mozilla>>Seamonkey >> Version 2.0.2 (Open CPE detail)
Mozilla>>Seamonkey >> Version 2.0.3
- Mozilla>>Seamonkey >> Version 2.0.3 (Open CPE detail)
References
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11139
Tags : vdb-entry, signature, x_refsource_OVAL
Tags : vdb-entry, signature, x_refsource_OVAL
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043405.html
Tags : vendor-advisory, x_refsource_FEDORA
Tags : vendor-advisory, x_refsource_FEDORA
http://www.infoworld.com/article/09/01/13/Browser_bug_could_allow_phishing_without_email_1.html
Tags : x_refsource_MISC
Tags : x_refsource_MISC
http://www.mandriva.com/security/advisories?name=MDVSA-2010:125
Tags : vendor-advisory, x_refsource_MANDRIVA
Tags : vendor-advisory, x_refsource_MANDRIVA
http://www.darkreading.com/security/attacks/showArticle.jhtml?articleID=212900161
Tags : x_refsource_MISC
Tags : x_refsource_MISC
http://arstechnica.com/news.ars/post/20090113-new-method-of-phishmongering-could-fool-experienced-users.html
Tags : x_refsource_MISC
Tags : x_refsource_MISC
http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html
Tags : vendor-advisory, x_refsource_SUSE
Tags : vendor-advisory, x_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043369.html
Tags : vendor-advisory, x_refsource_FEDORA
Tags : vendor-advisory, x_refsource_FEDORA
2025©
tesweb SA
