← voltar
CVE-2009-0776

CVE-2009-0776

EPSS 1.6%
nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to bypass the same-origin policy and read XML data from another domain via a cross-domain redirect.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=414540http://secunia.com/advisories/34137http://secunia.com/advisories/34140http://secunia.com/advisories/34145http://secunia.com/advisories/34272http://secunia.com/advisories/34324http://secunia.com/advisories/34383http://secunia.com/advisories/34387http://secunia.com/advisories/34417http://secunia.com/advisories/34462