CVE-2008-4723
23.10.2008, 22:00
Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 3.0.1 through 3.0.3 allow remote attackers to inject arbitrary web script or HTML via an ftp:// URL for an HTML document within a (1) JPG, (2) PDF, or (3) TXT file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
| Vendor | Product | Version |
|---|---|---|
| mozilla | firefox | 3.0.1 |
| mozilla | firefox | 3.0.2 |
| mozilla | firefox | 3.0.3 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| firefox |
| ||||||||||||||||||
| firefox-3.0 |
| ||||||||||||||||||
| iceape |
| ||||||||||||||||||
| iceweasel |
| ||||||||||||||||||
| seamonkey |
| ||||||||||||||||||
| xulrunner |
| ||||||||||||||||||
| xulrunner-1.9 |
|