CVE-2008-0593 in Firefoxinfo

Summary

Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8, modify the .href property of stylesheet DOM nodes to the final URI of a 302 redirect, which might allow remote attackers to bypass the Same Origin Policy and read sensitive information from the original URL, such as with Single-Signon systems.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/05/2008

Disclosure

02/08/2008

Moderation

VulDB entry created

Entries

1: VDB-3589

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

8.8

EPSS

0.01092

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-0593
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-0593
CVE Details	https://www.cvedetails.com/cve/CVE-2008-0593/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!