CVE-2008-3835
Published: 24 September 2008
The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox before 2.0.0.17, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code via unknown vectors.
Priority
Status
Package | Release | Status |
---|---|---|
firefox Launchpad, Ubuntu, Debian |
Upstream |
Released
(2.0.0.17)
|
firefox-3.0 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.0.3)
|
iceape Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
mozilla-thunderbird Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
seamonkey Launchpad, Ubuntu, Debian |
Upstream |
Released
(1.1.12)
|
thunderbird Launchpad, Ubuntu, Debian |
Upstream |
Released
(2.0.0.17)
|
xulrunner Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
xulrunner-1.9 Launchpad, Ubuntu, Debian |
Upstream |
Released
(1.9.0.3)
|