Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-0171

EPSS 0.52% · P67
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-0171

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 allow remote attackers to perform cross-origin keystroke capture, and possibly conduct cross-site scripting (XSS) attacks, by using the addEventListener and setTimeout functions in conjunction with a wrapped object. NOTE: this vulnerability exists because of an incomplete fix for CVE-2007-3736.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mozilla Firefox addEventListener和setTimeout 跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mozilla Firefox是美国Mozilla基金会开发的一款开源Web浏览器。 Firefox的addEventListener和setTimeout实现中存在安全漏洞,用户可以通过使用包装的对象绕过MFSA 2007-19所提供的修复执行跨站脚本攻击;由于Firefox 3.6浏览器引擎中的更改,对这个版本的攻击仅限于从跨来源帧或窗口捕获键盘敲击事件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-0171

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-0171

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-03-25 · 40 CVEs total

CVE-2010-1107Fourkitchens Recent Comments模块跨站脚本攻击漏洞
CVE-2010-0586Cisco IOS Unified CME和Unified SRST组件多个拒绝服务漏洞
CVE-2010-1117Microsoft Windows 7 平台Internet Explorer 8堆缓冲区错误漏洞
CVE-2010-1118Microsoft Windows平台 Internet Explorer 8未明漏洞
CVE-2010-1119Apple Safari WebKit释放后使用漏洞
CVE-2010-1120Apple Safari 未明漏洞
CVE-2010-1121Mozilla Firefox代码注入漏洞
CVE-2010-1104Zope 'standard_error_message' 跨站脚本攻击漏洞
CVE-2010-1105AdvertisementManager 'cgi/index.php' 跨站脚本攻击漏洞
CVE-2010-1106AdvertisementManager 'cgi/index.php' PHP远程文件包含漏洞
CVE-2010-0585Cisco IOS Unified CME和Unified SRST组件多个拒绝服务漏洞
CVE-2010-1108Hashmarkconsulting Control Panel模块跨站脚本攻击漏洞
CVE-2010-1109Djayp phpMySport ‘index.php’多个SQL注入漏洞
CVE-2010-1110Djayp phpMySport ‘index.php’目录遍历漏洞
CVE-2010-1111Easysitenetwork Jokes Complete Website 多个跨站脚本攻击漏洞
CVE-2010-1112KloNews ‘cat.php’跨站脚本攻击漏洞
CVE-2010-1113Comscripts Web Server Creator Web Portal 多个跨站脚本攻击漏洞
CVE-2010-1114Comscripts Web Server Creator Web Portal 多个PHP远程文件包含漏洞
CVE-2010-1115Comscripts Web Server Creator - Web Portal 'news/include/customize.php'目录遍历漏洞
CVE-2010-1116Aspindir LookMer Music Portal web根目录敏感信息泄露漏洞

Showing top 20 of 40 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-0171

No comments yet

Leave a comment