CVE-2008-5513
Published: 17 December 2008
Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 allows remote attackers to bypass the same origin policy, inject content into documents associated with other domains, and conduct cross-site scripting (XSS) attacks via unknown vectors related to restoration of SessionStore data.
Priority
Status
Package | Release | Status |
---|---|---|
firefox Launchpad, Ubuntu, Debian |
dapper |
Released
(1.5.dfsg+1.5.0.15~prepatch080614i-0ubuntu1)
|
gutsy |
Released
(2.0.0.19+nobinonly1-0ubuntu0.7.10.1)
|
|
hardy |
Released
(2.0.0.19+nobinonly1-0ubuntu0.8.04.1)
|
|
intrepid |
Does not exist
|
|
jaunty |
Does not exist
|
|
karmic |
Does not exist
|
|
lucid |
Released
(3.0.5+nobinonly-0ubuntu0.8.04.1)
|
|
maverick |
Released
(3.0.5+nobinonly-0ubuntu0.8.04.1)
|
|
natty |
Released
(3.0.5+nobinonly-0ubuntu0.8.04.1)
|
|
upstream |
Released
(2.0.0.19)
|
|
firefox-3.0 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Released
(3.0.5+nobinonly-0ubuntu0.8.04.1)
|
|
intrepid |
Released
(3.0.5+nobinonly-0ubuntu0.8.10.1)
|
|
jaunty |
Released
(3.0.5+nobinonly-0ubuntu1)
|
|
karmic |
Does not exist
|
|
lucid |
Does not exist
|
|
maverick |
Does not exist
|
|
natty |
Does not exist
|
|
upstream |
Released
(3.0.5)
|
|
xulrunner Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
gutsy |
Released
(1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1)
|
|
hardy |
Released
(1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1)
|
|
intrepid |
Released
(1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.10.1)
|
|
jaunty |
Ignored
(end of life)
|
|
karmic |
Ignored
(end of life)
|
|
lucid |
Does not exist
|
|
maverick |
Does not exist
|
|
natty |
Does not exist
|
|
upstream |
Needs triage
|
|
xulrunner-1.9 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Released
(1.9.0.5+nobinonly-0ubuntu0.8.04.1)
|
|
intrepid |
Released
(1.9.0.5+nobinonly-0ubuntu0.8.10.1)
|
|
jaunty |
Released
(1.9.0.5+nobinonly-0ubuntu1)
|
|
karmic |
Does not exist
|
|
lucid |
Does not exist
|
|
maverick |
Does not exist
|
|
natty |
Does not exist
|
|
upstream |
Needs triage
|