Back to search
CVE-2009-3375
Published: Oct 29, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
oval:org.mitre.oval:def:10440
vdb-entry
signature
x_refsource_OVAL
272909
vendor-advisory
x_refsource_SUNALERT
oval:org.mitre.oval:def:5935
vdb-entry
signature
x_refsource_OVAL
https://bugzilla.mozilla.org/show_bug.cgi?id=503226
x_refsource_CONFIRM
ADV-2009-3334
vdb-entry
x_refsource_VUPEN
http://www.mozilla.org/security/announce/2009/mfsa2009-61.html
x_refsource_CONFIRM
MDVSA-2009:294
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now