Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-0909 | First vendor Publication | 2004-12-31 |
Vendor | Cve | Last vendor Modification | 2017-07-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 5.1 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | High |
Cvss Expoit Score | 4.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0909 |
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2008-09-24 | Name : Gentoo Security Advisory GLSA 200409-26 (Mozilla) File : nvt/glsa_200409_26.nasl |
2008-09-04 | Name : FreeBSD Ports: thunderbird File : nvt/freebsd_thunderbird0.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
10558 | Mozilla Multiple Products Signed Script Dialog Modification |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2005-07-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_b2e6d1d6133911d9bc4a000c41e2cdad.nasl - Type : ACT_GATHER_INFO |
2004-10-20 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2004-107.nasl - Type : ACT_GATHER_INFO |
2004-09-21 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200409-26.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-02 01:02:37 |
|
2024-02-01 12:01:33 |
|
2023-09-05 12:02:30 |
|
2023-09-05 01:01:25 |
|
2023-09-02 12:02:31 |
|
2023-09-02 01:01:24 |
|
2023-08-12 12:03:03 |
|
2023-08-12 01:01:25 |
|
2023-08-11 12:02:37 |
|
2023-08-11 01:01:27 |
|
2023-08-06 12:02:25 |
|
2023-08-06 01:01:26 |
|
2023-08-04 12:02:29 |
|
2023-08-04 01:01:26 |
|
2023-07-14 12:02:28 |
|
2023-07-14 01:01:27 |
|
2023-03-29 01:02:29 |
|
2023-03-28 12:01:31 |
|
2022-10-11 12:02:12 |
|
2022-10-11 01:01:18 |
|
2021-05-04 12:02:25 |
|
2021-04-22 01:02:34 |
|
2020-05-23 00:15:54 |
|
2019-06-25 12:01:02 |
|
2017-07-11 12:01:31 |
|
2016-10-18 12:01:23 |
|
2016-04-26 12:54:04 |
|
2014-02-17 10:28:07 |
|
2013-05-11 11:43:18 |
|