The view-source: URI implementation in Mozilla Firefox prior to 3.0.9, Thunderbird, and SeaMonkey does not properly implement the Same Origin Policy, which allows remote malicious users to (1) bypass crossdomain.xml restrictions and connect to arbitrary web sites via a Flash file; (2) read, create, or modify Local Shared Objects via a Flash file; or (3) bypass unspecified restrictions and render content via vectors involving a jar: URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 0.1 |
||
mozilla firefox 0.10 |
||
mozilla firefox 0.8 |
||
mozilla firefox 0.9.1 |
||
mozilla firefox 0.9 |
||
mozilla firefox 0.9_rc |
||
mozilla firefox 1.0.4 |
||
mozilla firefox 1.0.7 |
||
mozilla firefox 1.5.0.12 |
||
mozilla firefox 1.5.0.1 |
||
mozilla firefox 1.5.3 |
||
mozilla firefox 1.5.4 |
||
mozilla firefox 2.0 |
||
mozilla firefox 1.8 |
||
mozilla firefox 2.0.0.14 |
||
mozilla firefox 2.0.0.18 |
||
mozilla firefox 2.0.0.2 |
||
mozilla firefox 2.0.0.16 |
||
mozilla firefox 2.0.0.5 |
||
mozilla firefox 2.0.0.4 |
||
mozilla firefox 3.0.7 |
||
mozilla firefox 3.0.5 |
||
mozilla thunderbird |
||
mozilla firefox 0.3 |
||
mozilla firefox 0.4 |
||
mozilla firefox 0.7 |
||
mozilla firefox 0.9.2 |
||
mozilla firefox 1.0 |
||
mozilla firefox 1.0.3 |
||
mozilla firefox 1.5.0.4 |
||
mozilla firefox 1.5.0.5 |
||
mozilla firefox 1.5.0.2 |
||
mozilla firefox 1.5.0.6 |
||
mozilla firefox 1.5.7 |
||
mozilla firefox 1.5.0.8 |
||
mozilla firefox 1.5.0.9 |
||
mozilla firefox 2.0.0.10 |
||
mozilla firefox 2.0.0.13 |
||
mozilla firefox 2.0.0.20 |
||
mozilla firefox 2.0.0.17 |
||
mozilla firefox 2.0.0.7 |
||
mozilla firefox 3.0 |
||
mozilla firefox 3.0.6 |
||
mozilla firefox 3.0.2 |
||
mozilla firefox 0.10.1 |
||
mozilla firefox 0.2 |
||
mozilla firefox 0.9.3 |
||
mozilla firefox 1.0.6 |
||
mozilla firefox 1.0.1 |
||
mozilla firefox 1.0.8 |
||
mozilla firefox 1.5.0.10 |
||
mozilla firefox 1.5 |
||
mozilla firefox 1.5.1 |
||
mozilla firefox 1.5.2 |
||
mozilla firefox 1.5.8 |
||
mozilla firefox 2.0.0.12 |
||
mozilla firefox 2.0.0.21 |
||
mozilla firefox 2.0.0.15 |
||
mozilla firefox 2.0.0.8 |
||
mozilla firefox 2.0.0.9 |
||
mozilla firefox 3.0.1 |
||
mozilla firefox |
||
mozilla firefox 0.5 |
||
mozilla firefox 0.6 |
||
mozilla firefox 0.6.1 |
||
mozilla firefox 0.7.1 |
||
mozilla firefox 1.0.2 |
||
mozilla firefox 1.0.5 |
||
mozilla firefox 1.5.0.3 |
||
mozilla firefox 1.5.0.11 |
||
mozilla firefox 1.5.6 |
||
mozilla firefox 1.5.5 |
||
mozilla firefox 1.5.0.7 |
||
mozilla firefox 2.0.0.1 |
||
mozilla firefox 2.0.0.11 |
||
mozilla firefox 2.0.0.19 |
||
mozilla firefox 2.0.0.3 |
||
mozilla firefox 2.0.0.6 |
||
mozilla firefox 3.0.4 |
||
mozilla firefox 3.0.3 |
||
mozilla firefox 3.0beta5 |
||
mozilla seamonkey |