CVE-2008-4582
published 2008-10-15CVE-2008-4582: Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the…
PriorityP424medium4.3CVSS 2.0
AVNACMAuNCPINAN
EXPLOIT
EPSS
10.19%
95.1th percentile
Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the context of Windows .url shortcut files, which allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via an HTML document that is directly accessible through a filesystem, as demonstrated by documents in (1) local folders, (2) Windows share folders, and (3) RAR archives, and as demonstrated by IFRAMEs referencing shortcuts that point to (a) about:cache?device=memory and (b) about:cache?device=disk, a variant of CVE-2008-2810.
Affected
109 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| mozilla | firefox | <= 3.0.5 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
vendor_redhat6.8MEDIUM
vendor_ubuntu4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Firefox Chrome privilege escalation via local .desktop files
vendor_redhat·2009-02-03·CVSS 4.3
CVE-2009-0356 [MEDIUM] Firefox Chrome privilege escalation via local .desktop files
Firefox Chrome privilege escalation via local .desktop files
Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2) about:config URIs from .desktop files, which allows user-assisted remote attackers to bypass the Same Origin Policy and execute arbitrary code with chrome privileges via vectors involving the URL field in a Desktop Entry section of a .desktop file, related to representation of about: URIs as jar:file:// URIs. NOTE: this issue exists because of an incomplete fix for CVE-2008-4582.
Ubuntu
Firefox and xulrunner vulnerabilities
vendor_ubuntu·2008-11-17·CVSS 4.3
CVE-2008-4582 [MEDIUM] Firefox and xulrunner vulnerabilities
Title: Firefox and xulrunner vulnerabilities
Summary: Firefox and xulrunner vulnerabilities
Liu Die Yu discovered an information disclosure vulnerability in Firefox
when using saved .url shortcut files. If a user were tricked into
downloading a crafted .url file and a crafted HTML file, an attacker
could steal information from the user's cache. (CVE-2008-4582)
Georgi Guninski, Michal Zalewsk and Chris Evans discovered that the
same-origin check in Firefox could be bypassed. If a user were tricked
into opening a malicious website, an attacker could obtain private
information from data stored in the images, or discover information
about software on the user's computer. This issue only affects Firefox 2.
(CVE-2008-5012)
It was discovered that Firefox did not properly check if the Flash
mo
Red Hat
Mozilla same origin policy bypass
vendor_redhat·2008-10-08·CVSS 6.8
CVE-2008-4582 [MEDIUM] Mozilla same origin policy bypass
Mozilla same origin policy bypass
Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the context of Windows .url shortcut files, which allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via an HTML document that is directly accessible through a filesystem, as demonstrated by documents in (1) local folders, (2) Windows share folders, and (3) RAR archives, and as demonstrated by IFRAMEs referencing shortcuts that point to (a) about:cache?device=memory and (b) about:cache?device=disk, a variant of CVE-2008-2810.
GHSA
GHSA-95pc-m84q-vvmm: Mozilla Firefox before 3
ghsa_unreviewed·2022-05-02·CVSS 4.3
CVE-2009-0356 [MEDIUM] CWE-59 GHSA-95pc-m84q-vvmm: Mozilla Firefox before 3
Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2) about:config URIs from .desktop files, which allows user-assisted remote attackers to bypass the Same Origin Policy and execute arbitrary code with chrome privileges via vectors involving the URL field in a Desktop Entry section of a .desktop file, related to representation of about: URIs as jar:file:// URIs. NOTE: this issue exists because of an incomplete fix for CVE-2008-4582.
GHSA
GHSA-6m7x-v5gc-rvvh: Mozilla Firefox 3
ghsa_unreviewed·2022-05-02·CVSS 6.8
CVE-2008-4582 [MEDIUM] GHSA-6m7x-v5gc-rvvh: Mozilla Firefox 3
Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the context of Windows .url shortcut files, which allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via an HTML document that is directly accessible through a filesystem, as demonstrated by documents in (1) local folders, (2) Windows share folders, and (3) RAR archives, and as demonstrated by IFRAMEs referencing shortcuts that point to (a) about:cache?device=memory and (b) about:cache?device=disk, a variant of CVE-2008-2810.
No detection rules found.
http://liudieyu0.blog124.fc2.com/blog-entry-6.htmlhttp://secunia.com/advisories/32192http://secunia.com/advisories/32684http://secunia.com/advisories/32693http://secunia.com/advisories/32714http://secunia.com/advisories/32721http://secunia.com/advisories/32778http://secunia.com/advisories/32845http://secunia.com/advisories/32853http://secunia.com/advisories/33433http://secunia.com/advisories/33434http://secunia.com/advisories/34501http://securityreason.com/securityalert/4416http://securitytracker.com/alerts/2008/Nov/1021212.htmlhttp://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1http://ubuntu.com/usn/usn-667-1http://www.debian.org/security/2008/dsa-1669http://www.debian.org/security/2008/dsa-1671http://www.debian.org/security/2009/dsa-1696http://www.debian.org/security/2009/dsa-1697http://www.mozilla.org/security/announce/2008/mfsa2008-47.htmlhttp://www.securityfocus.com/archive/1/497091/100/0/threadedhttp://www.securityfocus.com/bid/31611http://www.securityfocus.com/bid/31747http://www.securitytracker.com/id?1021190http://www.us-cert.gov/cas/techalerts/TA08-319A.htmlhttp://www.vupen.com/english/advisories/2008/2818http://www.vupen.com/english/advisories/2009/0977https://bugzilla.mozilla.org/show_bug.cgi?id=455311https://exchange.xforce.ibmcloud.com/vulnerabilities/45740https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00366.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-November/msg00385.htmlhttp://liudieyu0.blog124.fc2.com/blog-entry-6.htmlhttp://secunia.com/advisories/32192http://secunia.com/advisories/32684http://secunia.com/advisories/32693http://secunia.com/advisories/32714http://secunia.com/advisories/32721http://secunia.com/advisories/32778http://secunia.com/advisories/32845http://secunia.com/advisories/32853http://secunia.com/advisories/33433http://secunia.com/advisories/33434http://secunia.com/advisories/34501http://securityreason.com/securityalert/4416http://securitytracker.com/alerts/2008/Nov/1021212.htmlhttp://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1http://ubuntu.com/usn/usn-667-1http://www.debian.org/security/2008/dsa-1669http://www.debian.org/security/2008/dsa-1671http://www.debian.org/security/2009/dsa-1696http://www.debian.org/security/2009/dsa-1697http://www.mozilla.org/security/announce/2008/mfsa2008-47.htmlhttp://www.securityfocus.com/archive/1/497091/100/0/threadedhttp://www.securityfocus.com/bid/31611http://www.securityfocus.com/bid/31747http://www.securitytracker.com/id?1021190http://www.us-cert.gov/cas/techalerts/TA08-319A.htmlhttp://www.vupen.com/english/advisories/2008/2818http://www.vupen.com/english/advisories/2009/0977https://bugzilla.mozilla.org/show_bug.cgi?id=455311https://exchange.xforce.ibmcloud.com/vulnerabilities/45740https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00366.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-November/msg00385.html
2008-10-15
Published