admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-31 18:51:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-53xx/CVE-2007-5338.json

220 lines
6.5 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2007-5338",
"sourceIdentifier": "secalert@redhat.com",
"published": "2007-10-21T20:17:00.000",
"lastModified": "2018-10-15T21:43:11.307",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed."
},
{
"lang": "es",
"value": "Mozilla Firefox versiones anteriores a 2.0.0.8 y SeaMonkey versiones anteriores a 1.1.5, permite a atacantes remotos ejecutar Javascript arbitrario con privilegios de usuario mediante el objeto Script para modificar XPCNativeWrappers de una manera que causa que el script se ejecute cuando una acci\u00f3n chrome sea realizada."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3
},
"baseSeverity": "HIGH",
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-16"
},
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"versionEndIncluding": "2.0.0.7",
"matchCriteriaId": "5A383873-7B11-41FA-A64D-8526370456F0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.1.4",
"matchCriteriaId": "BB0F8C75-4934-453B-B502-8D0B6E9873EA"
}
]
}
]
}
],
"references": [
{
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742",
"source": "secalert@redhat.com"
},
{
"url": "http://securitytracker.com/id?1018836",
"source": "secalert@redhat.com"
},
{
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1",
"source": "secalert@redhat.com"
},
{
"url": "http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html",
"source": "secalert@redhat.com"
},
{
"url": "http://www.debian.org/security/2007/dsa-1392",
"source": "secalert@redhat.com"
},
{
"url": "http://www.debian.org/security/2007/dsa-1396",
"source": "secalert@redhat.com"
},
{
"url": "http://www.debian.org/security/2007/dsa-1401",
"source": "secalert@redhat.com"
},
{
"url": "http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202",
"source": "secalert@redhat.com"
},
{
"url": "http://www.mozilla.org/security/announce/2007/mfsa2007-35.html",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://www.novell.com/linux/security/advisories/2007_57_mozilla.html",
"source": "secalert@redhat.com"
},
{
"url": "http://www.redhat.com/support/errata/RHSA-2007-0979.html",
"source": "secalert@redhat.com"
},
{
"url": "http://www.redhat.com/support/errata/RHSA-2007-0980.html",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.redhat.com/support/errata/RHSA-2007-0981.html",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/archive/1/482876/100/200/threaded",
"source": "secalert@redhat.com"
},
{
"url": "http://www.securityfocus.com/archive/1/482925/100/0/threaded",
"source": "secalert@redhat.com"
},
{
"url": "http://www.securityfocus.com/archive/1/482932/100/200/threaded",
"source": "secalert@redhat.com"
},
{
"url": "http://www.securityfocus.com/bid/26132",
"source": "secalert@redhat.com"
},
{
"url": "http://www.ubuntu.com/usn/usn-536-1",
"source": "secalert@redhat.com"
},
{
"url": "http://www.vupen.com/english/advisories/2007/3544",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.vupen.com/english/advisories/2007/3587",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.vupen.com/english/advisories/2008/0083",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37288",
"source": "secalert@redhat.com"
},
{
"url": "https://issues.rpath.com/browse/RPL-1858",
"source": "secalert@redhat.com"
},
{
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10965",
"source": "secalert@redhat.com"
},
{
"url": "https://usn.ubuntu.com/535-1/",
"source": "secalert@redhat.com"
},
{
"url": "https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00498.html",
"source": "secalert@redhat.com"
},
{
"url": "https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00285.html",
"source": "secalert@redhat.com"
},
{
"url": "https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html",
"source": "secalert@redhat.com"
}
]
}
Reference in New Issue Copy Permalink