CVE-2008-0593
Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8, modify the .href property of stylesheet DOM nodes to the final URI of a 302 redirect, which might allow remote attackers to bypass the Same Origin Policy and read sensitive information from the original URL, such as with Single-Signon systems.Enginsight
Vendor | Product | Version |
---|---|---|
mozilla | firefox | 𝑥 ≤ 2.0.0.11 |
mozilla | firefox | 0.2 |
mozilla | firefox | 0.9.2 |
mozilla | firefox | 1.0.2 |
mozilla | firefox | 1.5.0.2 |
mozilla | firefox | 1.5.0.12 |
mozilla | firefox | 1.5.2 |
mozilla | firefox | 2.0 |
mozilla | firefox | 2.0.0.1 |
mozilla | firefox | 2.0.0.10 |
mozilla | seamonkey | 𝑥 ≤ 1.1.17 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0 |
mozilla | seamonkey | 1.0.1 |
mozilla | seamonkey | 1.0.2 |
mozilla | seamonkey | 1.0.3 |
mozilla | seamonkey | 1.0.4 |
mozilla | seamonkey | 1.0.5 |
mozilla | seamonkey | 1.0.6 |
mozilla | seamonkey | 1.0.7 |
mozilla | seamonkey | 1.0.8 |
mozilla | seamonkey | 1.0.9 |
mozilla | seamonkey | 1.0.99 |
mozilla | seamonkey | 1.1 |
mozilla | seamonkey | 1.1.1 |
mozilla | seamonkey | 1.1.2 |
mozilla | seamonkey | 1.1.10 |
mozilla | seamonkey | 1.1.11 |
mozilla | seamonkey | 1.1.12 |
mozilla | seamonkey | 1.1.13 |
mozilla | seamonkey | 1.1.14 |
mozilla | seamonkey | 1.1.15 |
mozilla | seamonkey | 1.1.16 |
Ubuntu Releases
Ubuntu Product | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
firefox |
| ||||||||||||
iceape |
| ||||||||||||
iceweasel |
| ||||||||||||
seamonkey |
| ||||||||||||
xulrunner |
|
Common Weakness Enumeration