CVE-2009-1310 Detail

CVE-2009-1310

CVE Descriptions

Cross-site scripting (XSS) vulnerability in the MozSearch plugin implementation in Mozilla Firefox before 3.0.9 allows user-assisted remote attackers to inject arbitrary web script or HTML via a javascript: URI in the SearchForm element.

CVE Informations

Related Weaknesses

CWE-ID	Weakness Name	Source
CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Metrics

Metrics	Score	Severity	CVSS Vector	Source
V2	4.3		AV:N/AC:M/Au:N/C:N/I:P/A:N	[email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

EPSS First.org

Products Mentioned

Configuraton 0

Mozilla>>Firefox >> Version To (including) 3.0.8

Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version 0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 0.6.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 0.7.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.2 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.3 (Open CPE detail)
Mozilla>>Firefox >> Version 0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 0.10.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.4.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.8 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.13 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.14 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.15 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.16 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.17 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.18 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.19 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.20 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.8 (Open CPE detail)

Mozilla>>Firefox >> Version 0.1

Mozilla>>Firefox >> Version 0.1 (Open CPE detail)

Mozilla>>Firefox >> Version 0.2

Mozilla>>Firefox >> Version 0.2 (Open CPE detail)

Mozilla>>Firefox >> Version 0.3

Mozilla>>Firefox >> Version 0.3 (Open CPE detail)

Mozilla>>Firefox >> Version 0.4

Mozilla>>Firefox >> Version 0.4 (Open CPE detail)

Mozilla>>Firefox >> Version 0.5

Mozilla>>Firefox >> Version 0.5 (Open CPE detail)

Mozilla>>Firefox >> Version 0.6

Mozilla>>Firefox >> Version 0.6 (Open CPE detail)

Mozilla>>Firefox >> Version 0.6.1

Mozilla>>Firefox >> Version 0.6.1 (Open CPE detail)

Mozilla>>Firefox >> Version 0.7

Mozilla>>Firefox >> Version 0.7 (Open CPE detail)

Mozilla>>Firefox >> Version 0.7.1

Mozilla>>Firefox >> Version 0.7.1 (Open CPE detail)

Mozilla>>Firefox >> Version 0.8

Mozilla>>Firefox >> Version 0.8 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9

Mozilla>>Firefox >> Version 0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9

Mozilla>>Firefox >> Version 0.9 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9.1

Mozilla>>Firefox >> Version 0.9.1 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9.2

Mozilla>>Firefox >> Version 0.9.2 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9.3

Mozilla>>Firefox >> Version 0.9.3 (Open CPE detail)

Mozilla>>Firefox >> Version 0.9_rc

Mozilla>>Firefox >> Version 0.10

Mozilla>>Firefox >> Version 0.10 (Open CPE detail)

Mozilla>>Firefox >> Version 0.10.1

Mozilla>>Firefox >> Version 0.10.1 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0

Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0

Mozilla>>Firefox >> Version 1.0 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.1

Mozilla>>Firefox >> Version 1.0.1 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.2

Mozilla>>Firefox >> Version 1.0.2 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.3

Mozilla>>Firefox >> Version 1.0.3 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.4

Mozilla>>Firefox >> Version 1.0.4 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.5

Mozilla>>Firefox >> Version 1.0.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.6

Mozilla>>Firefox >> Version 1.0.6 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.6

Mozilla>>Firefox >> Version 1.0.7

Mozilla>>Firefox >> Version 1.0.7 (Open CPE detail)

Mozilla>>Firefox >> Version 1.0.8

Mozilla>>Firefox >> Version 1.0.8 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5

Mozilla>>Firefox >> Version 1.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.1

Mozilla>>Firefox >> Version 1.5.0.1 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.2

Mozilla>>Firefox >> Version 1.5.0.2 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.3

Mozilla>>Firefox >> Version 1.5.0.3 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.4

Mozilla>>Firefox >> Version 1.5.0.4 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.5

Mozilla>>Firefox >> Version 1.5.0.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.6

Mozilla>>Firefox >> Version 1.5.0.6 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.7

Mozilla>>Firefox >> Version 1.5.0.7 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.8

Mozilla>>Firefox >> Version 1.5.0.8 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.9

Mozilla>>Firefox >> Version 1.5.0.9 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.10

Mozilla>>Firefox >> Version 1.5.0.10 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.11

Mozilla>>Firefox >> Version 1.5.0.11 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.0.12

Mozilla>>Firefox >> Version 1.5.0.12 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.1

Mozilla>>Firefox >> Version 1.5.1 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.2

Mozilla>>Firefox >> Version 1.5.2 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.3

Mozilla>>Firefox >> Version 1.5.3 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.4

Mozilla>>Firefox >> Version 1.5.4 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.5

Mozilla>>Firefox >> Version 1.5.5 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.6

Mozilla>>Firefox >> Version 1.5.6 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.7

Mozilla>>Firefox >> Version 1.5.7 (Open CPE detail)

Mozilla>>Firefox >> Version 1.5.8

Mozilla>>Firefox >> Version 1.5.8 (Open CPE detail)

Mozilla>>Firefox >> Version 1.8

Mozilla>>Firefox >> Version 1.8 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0

Mozilla>>Firefox >> Version 2.0 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0

Mozilla>>Firefox >> Version 2.0.0.1

Mozilla>>Firefox >> Version 2.0.0.1 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.2

Mozilla>>Firefox >> Version 2.0.0.2 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.3

Mozilla>>Firefox >> Version 2.0.0.3 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.4

Mozilla>>Firefox >> Version 2.0.0.4 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.5

Mozilla>>Firefox >> Version 2.0.0.5 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.6

Mozilla>>Firefox >> Version 2.0.0.6 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.7

Mozilla>>Firefox >> Version 2.0.0.7 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.8

Mozilla>>Firefox >> Version 2.0.0.8 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.9

Mozilla>>Firefox >> Version 2.0.0.9 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.10

Mozilla>>Firefox >> Version 2.0.0.10 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.11

Mozilla>>Firefox >> Version 2.0.0.11 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.12

Mozilla>>Firefox >> Version 2.0.0.12 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.13

Mozilla>>Firefox >> Version 2.0.0.13 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.14

Mozilla>>Firefox >> Version 2.0.0.14 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.15

Mozilla>>Firefox >> Version 2.0.0.15 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.16

Mozilla>>Firefox >> Version 2.0.0.16 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.17

Mozilla>>Firefox >> Version 2.0.0.17 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.18

Mozilla>>Firefox >> Version 2.0.0.18 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.19

Mozilla>>Firefox >> Version 2.0.0.19 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.20

Mozilla>>Firefox >> Version 2.0.0.20 (Open CPE detail)

Mozilla>>Firefox >> Version 2.0.0.21

Mozilla>>Firefox >> Version 2.0_8

Mozilla>>Firefox >> Version 3.0

Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0

Mozilla>>Firefox >> Version 3.0 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0

Mozilla>>Firefox >> Version 3.0.1

Mozilla>>Firefox >> Version 3.0.1 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.2

Mozilla>>Firefox >> Version 3.0.2 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.3

Mozilla>>Firefox >> Version 3.0.3 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.4

Mozilla>>Firefox >> Version 3.0.4 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.5

Mozilla>>Firefox >> Version 3.0.5 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.6

Mozilla>>Firefox >> Version 3.0.6 (Open CPE detail)

Mozilla>>Firefox >> Version 3.0.7

Mozilla>>Firefox >> Version 3.0.7 (Open CPE detail)

References

http://www.mandriva.com/security/advisories?name=MDVSA-2009:111
Tags : vendor-advisory, x_refsource_MANDRIVA

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6242
Tags : vdb-entry, signature, x_refsource_OVAL

https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00683.html
Tags : vendor-advisory, x_refsource_FEDORA

http://secunia.com/advisories/34894
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.vupen.com/english/advisories/2009/1125
Tags : vdb-entry, x_refsource_VUPEN

http://secunia.com/advisories/34758
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.debian.org/security/2009/dsa-1886
Tags : vendor-advisory, x_refsource_DEBIAN

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11520
Tags : vdb-entry, signature, x_refsource_OVAL

https://bugzilla.mozilla.org/show_bug.cgi?id=483086
Tags : x_refsource_CONFIRM

http://secunia.com/advisories/35065
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.mozilla.org/security/announce/2009/mfsa2009-20.html
Tags : x_refsource_CONFIRM

https://usn.ubuntu.com/764-1/
Tags : vendor-advisory, x_refsource_UBUNTU

http://secunia.com/advisories/36757
Tags : third-party-advisory, x_refsource_SECUNIA

http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
Tags : vendor-advisory, x_refsource_SUSE

http://www.securityfocus.com/bid/34656
Tags : vdb-entry, x_refsource_BID

http://secunia.com/advisories/34843
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.redhat.com/support/errata/RHSA-2009-0436.html
Tags : vendor-advisory, x_refsource_REDHAT

http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1
Tags : vendor-advisory, x_refsource_SUNALERT

http://www.securitytracker.com/id?1022097
Tags : vdb-entry, x_refsource_SECTRACK

CVE-2009-1310 : Detail

CVE-2009-1310

CVE Descriptions

CVE Informations

Related Weaknesses

Metrics

EPSS

EPSS Score

EPSS Percentile

Products Mentioned

Configuraton 0

References