4.3
CVE-2007-5335
- EPSS 1.29%
- Veröffentlicht 24.10.2007 00:46:00
- Zuletzt bearbeitet 16.06.2026 22:45:54
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain sensitive system information by using the addMicrosummaryGenerator sidebar method to access file: URIs.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.29% | 0.664 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
http://secunia.com/advisories/27335
http://secunia.com/advisories/27387
https://usn.ubuntu.com/535-1/
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html
http://secunia.com/advisories/27665
http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml
http://osvdb.org/42470
https://bugzilla.mozilla.org/show_bug.cgi?id=390983
https://exchange.xforce.ibmcloud.com/vulnerabilities/37428