N/A Publié le 2009-03-05

CVE-2009-0776

EN nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to bypass the same-origin policy and read XML data from another domain via a cross-domain redirect.

EPSS 0.9% percentile 75.3%

Apps suivies affectées

Thunderbird

winget:Mozilla.Thunderbird

1 ouverte

Configurations CPE vulnérables

Vendor	Produit	Plateforme	Versions	CPE 2.3 URI
mozilla	thunderbird	Windows	≤2.0.0.20	cpe:2.3:a:mozilla:thunderbird::::::::
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.0:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.4:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.5:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.6:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.9:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.12:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.14:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.16:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.17:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.18:::::::*
mozilla	thunderbird	Windows	—	cpe:2.3:a:mozilla:thunderbird:2.0.0.19:::::::*

Voir sur NVD ↗