CVE-2008-2809
published 2008-07-08CVE-2008-2809: Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonkey 1.1.5 and other versions before 1.1.10, Netscape 9.0, and other Mozilla-based web…
PriorityP415medium4CVSS 2.0
AVNACHAuNCNIPAP
EPSS
1.24%
65.4th percentile
Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonkey 1.1.5 and other versions before 1.1.10, Netscape 9.0, and other Mozilla-based web browsers, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regard the certificate as also accepted for all domain names in subjectAltName:dNSName fields, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | geckb | <= 1.9 | — |
| mozilla | seamonkey | <= 1.0.9 | — |
| mozilla | seamonkey | — | — |
| netscape | navigator | — | — |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:H/Au:N/C:N/I:P/A:P
vendor_ubuntu10.0CRITICAL
vendor_redhat4.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pxqv-4rrp-wmpm: Mozilla 1
ghsa_unreviewed·2022-05-01
CVE-2008-2809 [MEDIUM] CWE-20 GHSA-pxqv-4rrp-wmpm: Mozilla 1
Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonkey 1.1.5 and other versions before 1.1.10, Netscape 9.0, and other Mozilla-based web browsers, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regard the certificate as also accepted for all domain names in subjectAltName:dNSName fields, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2008-07-25·CVSS 10.0
CVE-2008-2785 [CRITICAL] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Thunderbird vulnerabilities
Various flaws were discovered in the browser engine. If a user had
Javascript enabled and were tricked into opening a malicious web
page, an attacker could cause a denial of service via application
crash, or possibly execute arbitrary code with the privileges of the
user invoking the program. (CVE-2008-2798, CVE-2008-2799)
It was discovered that Thunderbird would allow non-privileged XUL
documents to load chrome scripts from the fastload file if Javascript
was enabled. This could allow an attacker to execute arbitrary
Javascript code with chrome privileges. (CVE-2008-2802)
A flaw was discovered in Thunderbird that allowed overwriting trusted
objects via mozIJSSubScriptLoader.loadSubScript(). If a user had
Javascrip
Red Hat
Firefox self signed certificate flaw
vendor_redhat·2008-07-02·CVSS 4.0
CVE-2008-2809 [MEDIUM] Firefox self signed certificate flaw
Firefox self signed certificate flaw
Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonkey 1.1.5 and other versions before 1.1.10, Netscape 9.0, and other Mozilla-based web browsers, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regard the certificate as also accepted for all domain names in subjectAltName:dNSName fields, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site.
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2008-07-02·CVSS 10.0
CVE-2008-2798 [CRITICAL] Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Firefox vulnerabilities
Various flaws were discovered in the browser engine. By tricking
a user into opening a malicious web page, an attacker could cause
a denial of service via application crash, or possibly execute
arbitrary code with the privileges of the user invoking the
program. (CVE-2008-2798, CVE-2008-2799)
Several problems were discovered in the JavaScript engine. If a
user were tricked into opening a malicious web page, an attacker
could perform cross-site scripting attacks. (CVE-2008-2800)
Collin Jackson discovered various flaws in the JavaScript engine
which allowed JavaScript to be injected into signed JAR files. If
a user were tricked into opening malicious web content, an
attacker may be able to execute arbitrary code with the pri
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00004.htmlhttp://nils.toedtmann.net/pub/subjectAltName.txthttp://rhn.redhat.com/errata/RHSA-2008-0616.htmlhttp://secunia.com/advisories/30878http://secunia.com/advisories/30898http://secunia.com/advisories/30903http://secunia.com/advisories/30911http://secunia.com/advisories/30949http://secunia.com/advisories/31005http://secunia.com/advisories/31008http://secunia.com/advisories/31021http://secunia.com/advisories/31023http://secunia.com/advisories/31069http://secunia.com/advisories/31076http://secunia.com/advisories/31183http://secunia.com/advisories/31195http://secunia.com/advisories/31220http://secunia.com/advisories/31253http://secunia.com/advisories/31286http://secunia.com/advisories/31377http://secunia.com/advisories/31403http://secunia.com/advisories/33433http://secunia.com/advisories/34501http://security.gentoo.org/glsa/glsa-200808-03.xmlhttp://securityreason.com/securityalert/3498http://securitytracker.com/id?1018979http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.383152http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.384911http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.410484http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1http://wiki.rpath.com/Advisories:rPSA-2008-0216http://www.debian.org/security/2008/dsa-1607http://www.debian.org/security/2008/dsa-1615http://www.debian.org/security/2008/dsa-1621http://www.debian.org/security/2009/dsa-1697http://www.mandriva.com/security/advisories?name=MDVSA-2008:136http://www.mandriva.com/security/advisories?name=MDVSA-2008:155http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.15http://www.mozilla.org/security/announce/2008/mfsa2008-31.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0547.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0549.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0569.htmlhttp://www.securityfocus.com/archive/1/483929/100/100/threadedhttp://www.securityfocus.com/archive/1/483937/100/100/threadedhttp://www.securityfocus.com/archive/1/483960/100/100/threadedhttp://www.securityfocus.com/archive/1/494080/100/0/threadedhttp://www.securityfocus.com/bid/30038http://www.securitytracker.com/id?1020419http://www.ubuntu.com/usn/usn-619-1http://www.ubuntu.com/usn/usn-629-1http://www.vupen.com/english/advisories/2008/1993/referenceshttp://www.vupen.com/english/advisories/2009/0977https://bugzilla.mozilla.org/show_bug.cgi?id=240261https://bugzilla.mozilla.org/show_bug.cgi?id=327181https://bugzilla.mozilla.org/show_bug.cgi?id=402347https://exchange.xforce.ibmcloud.com/vulnerabilities/43524https://issues.rpath.com/browse/RPL-2646https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10205https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00125.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-August/msg00144.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-July/msg00207.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-July/msg00288.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-July/msg00295.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-07/msg00004.htmlhttp://nils.toedtmann.net/pub/subjectAltName.txthttp://rhn.redhat.com/errata/RHSA-2008-0616.htmlhttp://secunia.com/advisories/30878http://secunia.com/advisories/30898http://secunia.com/advisories/30903http://secunia.com/advisories/30911http://secunia.com/advisories/30949http://secunia.com/advisories/31005http://secunia.com/advisories/31008http://secunia.com/advisories/31021http://secunia.com/advisories/31023http://secunia.com/advisories/31069http://secunia.com/advisories/31076http://secunia.com/advisories/31183http://secunia.com/advisories/31195http://secunia.com/advisories/31220http://secunia.com/advisories/31253http://secunia.com/advisories/31286http://secunia.com/advisories/31377http://secunia.com/advisories/31403http://secunia.com/advisories/33433http://secunia.com/advisories/34501http://security.gentoo.org/glsa/glsa-200808-03.xmlhttp://securityreason.com/securityalert/3498http://securitytracker.com/id?1018979http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.383152http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.384911http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.410484http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1http://wiki.rpath.com/Advisories:rPSA-2008-0216http://www.debian.org/security/2008/dsa-1607http://www.debian.org/security/2008/dsa-1615http://www.debian.org/security/2008/dsa-1621http://www.debian.org/security/2009/dsa-1697http://www.mandriva.com/security/advisories?name=MDVSA-2008:136http://www.mandriva.com/security/advisories?name=MDVSA-2008:155
+ 26 more references
2008-07-08
Published