Back to search
CVE-2008-2800
Published: Jul 7, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded document, or (3) the onreadystatechange handler in conjunction with an XMLHttpRequest.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SA:2008:034
vendor-advisory
x_refsource_SUSE
https://bugzilla.mozilla.org/show_bug.cgi?id=433328
x_refsource_CONFIRM
RHSA-2008:0549
vendor-advisory
x_refsource_REDHAT
DSA-1697
vendor-advisory
x_refsource_DEBIAN
http://www.mozilla.org/security/announce/2008/mfsa2008-22.html
x_refsource_CONFIRM
31021
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9386
vdb-entry
signature
x_refsource_OVAL
30898
third-party-advisory
x_refsource_SECUNIA
http://wiki.rpath.com/Advisories:rPSA-2008-0216
x_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-2646
x_refsource_CONFIRM
30949
third-party-advisory
x_refsource_SECUNIA
SSA:2008-191-03
vendor-advisory
x_refsource_SLACKWARE
ADV-2009-0977
vdb-entry
x_refsource_VUPEN
31069
third-party-advisory
x_refsource_SECUNIA
31008
third-party-advisory
x_refsource_SECUNIA
31377
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0616
vendor-advisory
x_refsource_REDHAT
ADV-2008-1993
vdb-entry
x_refsource_VUPEN
31023
third-party-advisory
x_refsource_SECUNIA
30038
vdb-entry
x_refsource_BID
DSA-1607
vendor-advisory
x_refsource_DEBIAN
GLSA-200808-03
vendor-advisory
x_refsource_GENTOO
31005
third-party-advisory
x_refsource_SECUNIA
33433
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-6127
vendor-advisory
x_refsource_FEDORA
1020419
vdb-entry
x_refsource_SECTRACK
31183
third-party-advisory
x_refsource_SECUNIA
30903
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0547
vendor-advisory
x_refsource_REDHAT
FEDORA-2008-6193
vendor-advisory
x_refsource_FEDORA
256408
vendor-advisory
x_refsource_SUNALERT
https://bugzilla.mozilla.org/show_bug.cgi?id=439035
x_refsource_CONFIRM
SSA:2008-191
vendor-advisory
x_refsource_SLACKWARE
https://bugzilla.mozilla.org/show_bug.cgi?id=428672
x_refsource_CONFIRM
DSA-1615
vendor-advisory
x_refsource_DEBIAN
31195
third-party-advisory
x_refsource_SECUNIA
31076
third-party-advisory
x_refsource_SECUNIA
USN-619-1
vendor-advisory
x_refsource_UBUNTU
30911
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0569
vendor-advisory
x_refsource_REDHAT
30878
third-party-advisory
x_refsource_SECUNIA
20080708 rPSA-2008-0216-1 firefox
mailing-list
x_refsource_BUGTRAQ
FEDORA-2008-6196
vendor-advisory
x_refsource_FEDORA
34501
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.mozilla.org/show_bug.cgi?id=432591
x_refsource_CONFIRM
https://bugzilla.mozilla.org/show_bug.cgi?id=440308
x_refsource_CONFIRM
MDVSA-2008:136
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now