CVE-2010-2768

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 07-09-2010 02:00

Last modified: - 07-09-2010 02:00

Total changes: - 8

Description

CVE-2010-2768 Mozilla UTF-7 XSS by overriding document charset using <object> type attribute (MFSA 2010-61)

Common Vulnerability Scoring System (CVSS)

AV:N/AC:H/Au:N/C:P/I:P/A:P

High

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

5.1

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=seamonkey-0 AND versionEndExcluding=1.0.9-0.60.el3

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=3

AND

product=seamonkey-0 AND versionEndExcluding=1.0.9-63.el4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=4

AND

product=firefox-0 AND versionEndExcluding=3.6.9-1.el4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=4

AND

product=nspr-0 AND versionEndExcluding=4.8.6-1.el4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=4

AND

product=nss-0 AND versionEndExcluding=3.12.7-1.el4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=4

AND

product=thunderbird-0 AND versionEndExcluding=1.5.0.12-30.el4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=4

AND

product=firefox-0 AND versionEndExcluding=3.6.9-2.el5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=nspr-0 AND versionEndExcluding=4.8.6-1.el5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=nss-0 AND versionEndExcluding=3.12.7-2.el5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=xulrunner-0 AND versionEndExcluding=1.9.2.9-1.el5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=thunderbird-0 AND versionEndExcluding=2.0.0.24-8.el5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=5

AND

product=firefox AND version=

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=6

AND

product=firefox AND version=

vendor=Red Hat Enterprise Linux AND product=rhel_eus AND version=4.8

AND

product=firefox AND version=

vendor=Red Hat Enterprise Linux AND product=rhel_eus AND version=5.5

Reference

Keywords

REDHAT

CVE-2010-2768

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.