CVE-2009-3985
published 2009-12-17CVE-2009-3985: Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by…
PriorityP427medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
2.54%
83.0th percentile
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the associated blank document, a related issue to CVE-2009-2654.
Affected
135 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | <= 3.0.15 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_ubuntu9.3CRITICAL
vendor_redhat5.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Firefox 3.5 and Xulrunner 1.9.1 regression
vendor_ubuntu·2010-01-08·CVSS 9.3
[CRITICAL] Firefox 3.5 and Xulrunner 1.9.1 regression
Title: Firefox 3.5 and Xulrunner 1.9.1 regression
Summary: Firefox 3.5 and Xulrunner 1.9.1 regression
USN-874-1 fixed vulnerabilities in Firefox and Xulrunner. The upstream
changes introduced a regression when using NTLM authentication. This update
fixes the problem and adds additional stability fixes.
We apologize for the inconvenience.
Original advisory details:
Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and
David James discovered several flaws in the browser and JavaScript engines
of Firefox. If a user were tricked into viewing a malicious website, a
remote attacker could cause a denial of service or possibly execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2009-3979, CVE-2009-3980, CVE-2009-3982, CVE-2009-3986)
Takehiro T
Ubuntu
Firefox 3.0 and Xulrunner 1.9 regression
vendor_ubuntu·2010-01-08·CVSS 9.3
[CRITICAL] Firefox 3.0 and Xulrunner 1.9 regression
Title: Firefox 3.0 and Xulrunner 1.9 regression
Summary: Firefox 3.0 and Xulrunner 1.9 regression
USN-873-1 fixed vulnerabilities in Firefox and Xulrunner. The upstream
changes introduced a regression when using NTLM authentication. This update
fixes the problem and adds additional stability fixes.
We apologize for the inconvenience.
Original advisory details:
Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and
David James discovered several flaws in the browser and JavaScript engines
of Firefox. If a user were tricked into viewing a malicious website, a
remote attacker could cause a denial of service or possibly execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2009-3979, CVE-2009-3981, CVE-2009-3986)
Takehiro Takahashi discovere
Ubuntu
Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
vendor_ubuntu·2009-12-18·CVSS 9.3
CVE-2009-3979 [CRITICAL] Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
Title: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
Summary: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and
David James discovered several flaws in the browser and JavaScript engines
of Firefox. If a user were tricked into viewing a malicious website, a
remote attacker could cause a denial of service or possibly execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2009-3979, CVE-2009-3980, CVE-2009-3982, CVE-2009-3986)
Takehiro Takahashi discovered flaws in the NTLM implementation in Firefox.
If an NTLM authenticated user visited a malicious website, a remote
attacker could send requests to other applications, authenticated as the
user. (CVE-2009-3983)
Jonathan Morgan discovered t
Ubuntu
Firefox 3.0 and Xulrunner 1.9 vulnerabilities
vendor_ubuntu·2009-12-18·CVSS 9.3
CVE-2009-3979 [CRITICAL] Firefox 3.0 and Xulrunner 1.9 vulnerabilities
Title: Firefox 3.0 and Xulrunner 1.9 vulnerabilities
Summary: Firefox 3.0 and Xulrunner 1.9 vulnerabilities
Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and
David James discovered several flaws in the browser and JavaScript engines
of Firefox. If a user were tricked into viewing a malicious website, a
remote attacker could cause a denial of service or possibly execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2009-3979, CVE-2009-3981, CVE-2009-3986)
Takehiro Takahashi discovered flaws in the NTLM implementation in Firefox.
If an NTLM authenticated user visited a malicious website, a remote
attacker could send requests to other applications, authenticated as the
user. (CVE-2009-3983)
Jonathan Morgan discovered that Firefox did not
Red Hat
Mozilla URL spoofing via invalid document.location
vendor_redhat·2009-12-15·CVSS 5.8
CVE-2009-3985 [MEDIUM] Mozilla URL spoofing via invalid document.location
Mozilla URL spoofing via invalid document.location
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the associated blank document, a related issue to CVE-2009-2654.
GHSA
GHSA-gfvv-6f6j-f63q: Mozilla Firefox before 3
ghsa_unreviewed·2022-05-02·CVSS 5.8
CVE-2009-3985 [MEDIUM] GHSA-gfvv-6f6j-f63q: Mozilla Firefox before 3
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the associated blank document, a related issue to CVE-2009-2654.
No detection rules found.
http://secunia.com/advisories/37699http://secunia.com/advisories/37704http://secunia.com/advisories/37785http://secunia.com/advisories/37813http://secunia.com/advisories/37856http://secunia.com/advisories/37881http://securitytracker.com/id?1023342http://securitytracker.com/id?1023343http://www.debian.org/security/2009/dsa-1956http://www.mozilla.org/security/announce/2009/mfsa2009-69.htmlhttp://www.novell.com/linux/security/advisories/2009_63_firefox.htmlhttp://www.securityfocus.com/bid/37349http://www.securityfocus.com/bid/37370http://www.ubuntu.com/usn/USN-873-1http://www.ubuntu.com/usn/USN-874-1http://www.vupen.com/english/advisories/2009/3547https://bugzilla.mozilla.org/show_bug.cgi?id=514232https://bugzilla.redhat.com/show_bug.cgi?id=546726https://exchange.xforce.ibmcloud.com/vulnerabilities/54808https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8480https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9911https://rhn.redhat.com/errata/RHSA-2009-1674.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.htmlhttp://secunia.com/advisories/37699http://secunia.com/advisories/37704http://secunia.com/advisories/37785http://secunia.com/advisories/37813http://secunia.com/advisories/37856http://secunia.com/advisories/37881http://securitytracker.com/id?1023342http://securitytracker.com/id?1023343http://www.debian.org/security/2009/dsa-1956http://www.mozilla.org/security/announce/2009/mfsa2009-69.htmlhttp://www.novell.com/linux/security/advisories/2009_63_firefox.htmlhttp://www.securityfocus.com/bid/37349http://www.securityfocus.com/bid/37370http://www.ubuntu.com/usn/USN-873-1http://www.ubuntu.com/usn/USN-874-1http://www.vupen.com/english/advisories/2009/3547https://bugzilla.mozilla.org/show_bug.cgi?id=514232https://bugzilla.redhat.com/show_bug.cgi?id=546726https://exchange.xforce.ibmcloud.com/vulnerabilities/54808https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8480https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9911https://rhn.redhat.com/errata/RHSA-2009-1674.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.html
2009-12-17
Published