Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5505

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5505
Last Modified 21 Aug 2010 01:26:25
Published 17 Dec 2008 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5505

Summary

Mozilla Firefox 3.x before 3.0.5 allows remote attackers to bypass intended privacy restrictions by using the persist attribute in an XUL element to create and access data entities that are similar to cookies.

Vulnerable Systems

Application

  • Mozilla Firefox 3.0

  • Mozilla Firefox 3.0.1

  • Mozilla Firefox 3.0.2

  • Mozilla Firefox 3.0.3

  • Mozilla Firefox 3.0.4


References

MISC - https://bugzilla.mozilla.org/show_bug.cgi?id=295994

XF - firefox-xul-weak-security(47411)

VUPEN - ADV-2009-0977

UBUNTU - USN-690-1

SECTRACK - 1021428

BID - 32882

REDHAT - RHSA-2008:1036

CONFIRM - http://www.mozilla.org/security/announce/2008/mfsa2008-63.html

MANDRIVA - MDVSA-2008:245

SUNALERT - 256408

SECUNIA - 34501

SECUNIA - 33216

SECUNIA - 33203

SECUNIA - 33188


Last Updated: 27 May 2016 10:48:49