CVE-2007-3844 : Détail

CVE-2007-3844

67.54%V3
Network
2007-08-07
23h11 +00:00
2018-10-15
18h57 +00:00
Notifications pour un CVE
Restez informé de toutes modifications pour un CVE spécifique.
Gestion des notifications

Descriptions du CVE

Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and SeaMonkey 1.1.3 allows remote attackers to conduct cross-site scripting (XSS) attacks with chrome privileges via an addon that inserts a (1) javascript: or (2) data: link into an about:blank document loaded by chrome via (a) the window.open function or (b) a content.location assignment, aka "Cross Context Scripting." NOTE: this issue is caused by a CVE-2007-3089 regression.

Informations du CVE

Métriques

Métriques Score Gravité CVSS Vecteur Source
V2 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N [email protected]

EPSS

EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.

Score EPSS

Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.

Percentile EPSS

Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.

Informations sur l'Exploit

Exploit Database EDB-ID : 30439

Date de publication : 2007-07-30 22h00 +00:00
Auteur : moz_bug_r_a4
EDB Vérifié : Yes

source: https://www.securityfocus.com/bid/25142/info Mozilla Firefox, Thunderbird, and SeaMonkey are prone to a vulnerability that allows JavaScript to execute with unintended privileges. A malicious site may be able to cause the execution of a script with Chrome privileges. Attackers could exploit this issue to execute hostile script code with privileges that exceed those that were intended. Certain Firefox extensions may not intend 'about:blank' to execute script code with Chrome privileges. NOTE: This issue was introduced by the fix for MFSA 2007-20. The following proof of concept is available: w=open("about:blank");alert(1);u="javascript:alert(Components.stack);";w.document.body.innerHTML=u.link(u);w.focus();1 or top.opener.content.location="about:blank";alert(1);u="javascript:alert(Components.stack);";(w=top.opener.content).document.body.innerHTML=u.link(u);w.focus();1

Products Mentioned

Configuraton 0

Mozilla>>Firefox >> Version 2.0.0.5

Mozilla>>Seamonkey >> Version 1.1.3

Mozilla>>Thunderbird >> Version 2.0.0.5

Références

http://www.ubuntu.com/usn/usn-503-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://www.mandriva.com/security/advisories?name=MDVSA-2008:047
Tags : vendor-advisory, x_refsource_MANDRIVA
http://www.vupen.com/english/advisories/2007/3587
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/27414
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26393
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26303
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.vupen.com/english/advisories/2007/4256
Tags : vdb-entry, x_refsource_VUPEN
http://secunia.com/advisories/26309
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27298
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=MDKSA-2007:152
Tags : vendor-advisory, x_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200708-09.xml
Tags : vendor-advisory, x_refsource_GENTOO
http://securitytracker.com/id?1018481
Tags : vdb-entry, x_refsource_SECTRACK
http://www.debian.org/security/2007/dsa-1345
Tags : vendor-advisory, x_refsource_DEBIAN
http://secunia.com/advisories/26288
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27327
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27276
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.debian.org/security/2007/dsa-1391
Tags : vendor-advisory, x_refsource_DEBIAN
http://www.debian.org/security/2007/dsa-1346
Tags : vendor-advisory, x_refsource_DEBIAN
http://www.redhat.com/support/errata/RHSA-2007-0980.html
Tags : vendor-advisory, x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2007:047
Tags : vendor-advisory, x_refsource_MANDRIVA
http://secunia.com/advisories/28135
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27356
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2007-0981.html
Tags : vendor-advisory, x_refsource_REDHAT
http://www.securityfocus.com/bid/25142
Tags : vdb-entry, x_refsource_BID
http://www.vupen.com/english/advisories/2008/0082
Tags : vdb-entry, x_refsource_VUPEN
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://www.ubuntu.com/usn/usn-493-1
Tags : vendor-advisory, x_refsource_UBUNTU
http://secunia.com/advisories/26234
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.debian.org/security/2007/dsa-1344
Tags : vendor-advisory, x_refsource_DEBIAN
http://securitytracker.com/id?1018480
Tags : vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/27325
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2007-0979.html
Tags : vendor-advisory, x_refsource_REDHAT
http://securitytracker.com/id?1018479
Tags : vdb-entry, x_refsource_SECTRACK
http://secunia.com/advisories/26258
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27326
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/28363
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26331
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26460
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/27680
Tags : third-party-advisory, x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
Tags : vendor-advisory, x_refsource_SUNALERT
http://secunia.com/advisories/26335
Tags : third-party-advisory, x_refsource_SECUNIA
http://secunia.com/advisories/26572
Tags : third-party-advisory, x_refsource_SECUNIA