CVE-2009-2665

HIGH

Description

The nsDocument::SetScriptGlobalObject function in content/base/src/nsDocument.cpp in Mozilla Firefox 3.5.x before 3.5.2, when certain add-ons are enabled, does not properly handle a Link HTTP header, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted web page, related to an incorrect security wrapper.

References

http://secunia.com/advisories/36126

http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1

http://www.mozilla.org/security/announce/2009/mfsa2009-46.html

http://www.securityfocus.com/bid/35928

http://www.vupen.com/english/advisories/2009/2142

https://bugzilla.mozilla.org/show_bug.cgi?id=498897

https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.html

https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.html

Details

Source: MITRE

Published: 2009-08-04

Updated: 2009-09-04

Type: CWE-94

Risk Information

CVSS v2.0

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (9 total)

IDNameProductFamilySeverity
67922Oracle Linux 4 / 5 : firefox (ELSA-2009-1430)NessusOracle Linux Local Security Checks
critical
63402GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST)NessusGentoo Local Security Checks
critical
40932CentOS 4 / 5 : firefox / seamonkey (CESA-2009:1430)NessusCentOS Local Security Checks
critical
40921RHEL 4 / 5 : firefox (RHSA-2009:1430)NessusRed Hat Local Security Checks
critical
40484Fedora 10 : Miro-2.0.5-3.fc10 / blam-1.8.5-13.fc10 / epiphany-2.24.3-9.fc10 / etc (2009-8288)NessusFedora Local Security Checks
critical
40483Fedora 11 : kazehakase-0.5.6-11.svn3771_trunk.fc11.4 / Miro-2.0.5-3.fc11 / blam-1.8.5-13.fc11 / etc (2009-8279)NessusFedora Local Security Checks
critical
801244Mozilla Firefox 3.5 < 3.5.2 Proxy Response DoSLog Correlation EngineWeb Clients
high
5116Mozilla Firefox 3.5.x < 3.5.2 Privilege EscalationNessus Network MonitorWeb Clients
medium
40479Firefox 3.5.x < 3.5.2 Multiple VulnerabilitiesNessusWindows
high