NVD

Id
3926  
Name
CVE-2008-4068  
Description
Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass "restrictions imposed on local HTML files," and obtain sensitive information and prompt users to write this information into a file, via directory traversal sequences in a resource: URI.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-03  
Published
2008-09-24  
Modified Date
2012-10-29  
Seq
2008-4068  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
24949 3926 CVE-2008-4068 http://download.novell.com/Download?buildid=WZXONb-tqBw~  View
24950 3926 CVE-2008-4068 SUSE-SA:2008:050  View
24951 3926 CVE-2008-4068 oval:org.mitre.oval:def:11471  View
24952 3926 CVE-2008-4068 SSA:2008-269-02  View
24953 3926 CVE-2008-4068 SSA:2008-269-01  View
24954 3926 CVE-2008-4068 SSA:2008-270-01  View
24955 3926 CVE-2008-4068 256408  View
24956 3926 CVE-2008-4068 DSA-1649  View
24957 3926 CVE-2008-4068 DSA-1669  View
24958 3926 CVE-2008-4068 DSA-1696  View
24959 3926 CVE-2008-4068 DSA-1697  View
24960 3926 CVE-2008-4068 MDVSA-2008:205  View
24961 3926 CVE-2008-4068 MDVSA-2008:206  View
24962 3926 CVE-2008-4068 http://www.mozilla.org/security/announce/2008/mfsa2008-44.html  View
24963 3926 CVE-2008-4068 RHSA-2008:0879  View
24964 3926 CVE-2008-4068 RHSA-2008:0882  View
24965 3926 CVE-2008-4068 RHSA-2008:0908  View
24966 3926 CVE-2008-4068 31346  View
24967 3926 CVE-2008-4068 1020921  View
24968 3926 CVE-2008-4068 USN-645-1  View
24969 3926 CVE-2008-4068 USN-645-2  View
24970 3926 CVE-2008-4068 USN-647-1  View
24971 3926 CVE-2008-4068 ADV-2008-2661  View
24972 3926 CVE-2008-4068 ADV-2009-0977  View
24973 3926 CVE-2008-4068 mozilla-resourceprotocol-info-disclosure(45360)  View
24974 3926 CVE-2008-4068 FEDORA-2008-8425  View
24975 3926 CVE-2008-4068 FEDORA-2008-8401  View
24976 3926 CVE-2008-4068 FEDORA-2008-8429  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46448 JVNDB-2008-001758 複数の Mozilla 製品におけるディレクトリトラバーサルシーケンスの処理に関するディレクトリトラバーサルの脆弱性 複数の Mozilla 製品には、resource: URI においてディレクトリトラバーサルシーケンスの処理に不備があるため、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2008-4068 34181 CVE-2008-4068 3926 7.8 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001758.html 2008-09-23 2009-04-30 View