Detections
Analytics

CVE-2008-5513

medium

Description

Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 allows remote attackers to bypass the same origin policy, inject content into documents associated with other domains, and conduct cross-site scripting (XSS) attacks via unknown vectors related to restoration of SessionStore data.

References

https://usn.ubuntu.com/690-1/

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10389

https://exchange.xforce.ibmcloud.com/vulnerabilities/47418

http://www.vupen.com/english/advisories/2009/0977

http://www.ubuntu.com/usn/usn-690-2

http://www.securitytracker.com/id?1021421

http://www.securityfocus.com/bid/32882

http://www.redhat.com/support/errata/RHSA-2009-0002.html

http://www.redhat.com/support/errata/RHSA-2008-1037.html

http://www.redhat.com/support/errata/RHSA-2008-1036.html

http://www.mozilla.org/security/announce/2008/mfsa2008-69.html

http://www.mandriva.com/security/advisories?name=MDVSA-2008:245

http://www.mandriva.com/security/advisories?name=MDVSA-2008:244

http://www.debian.org/security/2009/dsa-1707

http://secunia.com/advisories/34501

http://secunia.com/advisories/33523

http://secunia.com/advisories/33421

http://secunia.com/advisories/33231

http://secunia.com/advisories/33216

http://secunia.com/advisories/33203

http://secunia.com/advisories/33189

http://secunia.com/advisories/33188

http://secunia.com/advisories/33184

Details

Source: Mitre, NVD

Published: 2008-12-17

Updated: 2023-02-13

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Severity: Medium