Required CVE Record Information
Description
The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and execute arbitrary JavaScript with chrome privileges via unknown vectors.
References 25 Total
- vupen.com: ADV-2008-3146 vdb-entry
- securityfocus.com: 32281 vdb-entry
- redhat.com: FEDORA-2008-9667 vendor-advisory
- secunia.com: 32713 third-party-advisory
- redhat.com: RHSA-2008:0977 vendor-advisory
- mandriva.com: MDVSA-2008:230 vendor-advisory
- vupen.com: ADV-2009-0977 vdb-entry
- secunia.com: 32695 third-party-advisory
- redhat.com: RHSA-2008:0978 vendor-advisory
- secunia.com: 32778 third-party-advisory
- securitytracker.com: 1021184 vdb-entry
- redhat.com: FEDORA-2008-9669 vendor-advisory
- sunsolve.sun.com: 256408 vendor-advisory
- lists.opensuse.org: SUSE-SA:2008:055 vendor-advisory
- secunia.com: 32694 third-party-advisory
- oval.cisecurity.org: oval:org.mitre.oval:def:10943 vdb-entrysignature
- secunia.com: 32721 third-party-advisory
- us-cert.gov: TA08-319A third-party-advisory
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=459906%2C460983
- http://www.mozilla.org/security/announce/2008/mfsa2008-53.html
- secunia.com: 32693 third-party-advisory
- mandriva.com: MDVSA-2008:228 vendor-advisory
- secunia.com: 32684 third-party-advisory
- ubuntu.com: USN-667-1 vendor-advisory
- secunia.com: 34501 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 25 Total
- vupen.com: ADV-2008-3146 vdb-entryx_transferred
- securityfocus.com: 32281 vdb-entryx_transferred
- redhat.com: FEDORA-2008-9667 vendor-advisoryx_transferred
- secunia.com: 32713 third-party-advisoryx_transferred
- redhat.com: RHSA-2008:0977 vendor-advisoryx_transferred
- mandriva.com: MDVSA-2008:230 vendor-advisoryx_transferred
- vupen.com: ADV-2009-0977 vdb-entryx_transferred
- secunia.com: 32695 third-party-advisoryx_transferred
- redhat.com: RHSA-2008:0978 vendor-advisoryx_transferred
- secunia.com: 32778 third-party-advisoryx_transferred
- securitytracker.com: 1021184 vdb-entryx_transferred
- redhat.com: FEDORA-2008-9669 vendor-advisoryx_transferred
- sunsolve.sun.com: 256408 vendor-advisoryx_transferred
- lists.opensuse.org: SUSE-SA:2008:055 vendor-advisoryx_transferred
- secunia.com: 32694 third-party-advisoryx_transferred
- oval.cisecurity.org: oval:org.mitre.oval:def:10943 vdb-entrysignaturex_transferred
- secunia.com: 32721 third-party-advisoryx_transferred
- us-cert.gov: TA08-319A third-party-advisoryx_transferred
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=459906%2C460983 x_transferred
- http://www.mozilla.org/security/announce/2008/mfsa2008-53.html x_transferred
- secunia.com: 32693 third-party-advisoryx_transferred
- mandriva.com: MDVSA-2008:228 vendor-advisoryx_transferred
- secunia.com: 32684 third-party-advisoryx_transferred
- ubuntu.com: USN-667-1 vendor-advisoryx_transferred
- secunia.com: 34501 third-party-advisoryx_transferred