CVE-2009-1308

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.

🔗 References (56)

secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
secalert@redhathttp://secunia.com/advisories/34758
secalert@redhathttp://secunia.com/advisories/34780
secalert@redhathttp://secunia.com/advisories/34843
secalert@redhathttp://secunia.com/advisories/34894
secalert@redhathttp://secunia.com/advisories/35042
secalert@redhathttp://secunia.com/advisories/35065
secalert@redhathttp://secunia.com/advisories/35536
secalert@redhathttp://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1
secalert@redhathttp://www.debian.org/security/2009/dsa-1797
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2009:111
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2009:141
secalert@redhathttp://www.mozilla.org/security/announce/2009/mfsa2009-18.html
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2009-0436.html
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2009-1126.html

Is Your Infrastructure Affected by CVE-2009-1308?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1308

📅 Published

🔄 Last Modified

🔗 References (56)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1308?