CVE-2008-2933— Mozilla Firefox URI拆分绕过安全限制漏洞

I. CVE-2008-2933の基本情報

影響を受ける製品

II. CVE-2008-2933の公開POC

III. CVE-2008-2933のインテリジェンス情報

• http://www.mozilla.org/security/announce/2008/mfsa2008-35.htmlx_refsource_CONFIRM
• http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=InfoDocument-patchbuilder-readme5031400x_refsource_CONFIRM
• https://issues.rpath.com/browse/RPL-2683x_refsource_CONFIRM
• http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0238x_refsource_CONFIRM
• https://bugzilla.mozilla.org/show_bug.cgi?id=441120x_refsource_CONFIRM
• http://www.securityfocus.com/bid/30242vdb-entryx_refsource_BID
• http://secunia.com/advisories/31183third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31120third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31176third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/34501third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31157third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31121third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/33433third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31306third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31145third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31129third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31270third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31261third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31106third-party-advisoryx_refsource_SECUNIA
• http://secunia.com/advisories/31377third-party-advisoryx_refsource_SECUNIA
• http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1vendor-advisoryx_refsource_SUNALERT
• http://www.securitytracker.com/id?1020500vdb-entryx_refsource_SECTRACK
• http://www.debian.org/security/2008/dsa-1615vendor-advisoryx_refsource_DEBIAN
• http://www.debian.org/security/2009/dsa-1697vendor-advisoryx_refsource_DEBIAN
• http://www.debian.org/security/2008/dsa-1614vendor-advisoryx_refsource_DEBIAN
• http://www.kb.cert.org/vuls/id/130923third-party-advisoryx_refsource_CERT-VN
• http://www.ubuntu.com/usn/usn-623-1vendor-advisoryx_refsource_UBUNTU
• http://www.ubuntu.com/usn/usn-626-2vendor-advisoryx_refsource_UBUNTU
• http://www.ubuntu.com/usn/usn-626-1vendor-advisoryx_refsource_UBUNTU
• http://www.vupen.com/english/advisories/2009/0977vdb-entryx_refsource_VUPEN
• http://www.redhat.com/support/errata/RHSA-2008-0598.htmlvendor-advisoryx_refsource_REDHAT
• http://www.redhat.com/support/errata/RHSA-2008-0597.htmlvendor-advisoryx_refsource_REDHAT
• http://security.gentoo.org/glsa/glsa-200808-03.xmlvendor-advisoryx_refsource_GENTOO
• http://www.mandriva.com/security/advisories?name=MDVSA-2008:148vendor-advisoryx_refsource_MANDRIVA
• http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.380974vendor-advisoryx_refsource_SLACKWARE
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11618vdb-entrysignaturex_refsource_OVAL
• http://www.securityfocus.com/archive/1/494860/100/0/threadedmailing-listx_refsource_BUGTRAQ
• https://exchange.xforce.ibmcloud.com/vulnerabilities/43832vdb-entryx_refsource_XF
• https://nvd.nist.gov/vuln/detail/CVE-2008-2933

Same Patch Batch · n/a · 2008-07-17 · 12 CVEs total

IV. 関連脆弱性

V. CVE-2008-2933へのコメント