CVE-2008-3836
Published: 24 September 2008
feedWriter in Mozilla Firefox before 2.0.0.17 allows remote attackers to execute scripts with chrome privileges via vectors related to feed preview and the (1) elem.doCommand, (2) elem.dispatchEvent, (3) _setTitleText, (4) _setTitleImage, and (5) _initSubscriptionUI functions.
Priority
Status
Package | Release | Status |
---|---|---|
firefox Launchpad, Ubuntu, Debian |
Upstream |
Released
(2.0.0.17)
|
firefox-3.0 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.0.3)
|
iceape Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
seamonkey Launchpad, Ubuntu, Debian |
Upstream |
Released
(1.1.12)
|
xulrunner Launchpad, Ubuntu, Debian |
Upstream |
Needs triage
|
xulrunner-1.9 Launchpad, Ubuntu, Debian |
Upstream |
Released
(1.9.0.3)
|