CVE-2008-5505

CVSS v2.0 5 (Medium)

EPSS 0.52 % (77^th)

Affected Products 1

Advisories 6

Mozilla Firefox 3.x before 3.0.5 allows remote attackers to bypass intended privacy restrictions by using the persist attribute in an XUL element to create and access data entities that are similar to cookies.

Weaknesses

CWE-264: Permissions, Privileges, and Access Controls

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2008-12-17 23:30:00
(15 years ago)
Updated Date: 2018-10-03 21:56:45
(6 years ago)

Affected Products

Mozilla

Firefox

Configuration #1

	CPE23	Up To
Mozilla Firefox 3.0.4 and prior versions	cpe:2.3:a:mozilla:firefox	<= 3.0.4
Mozilla Firefox 3.0	cpe:2.3:a:mozilla:firefox:3.0
Mozilla Firefox 3.0.1	cpe:2.3:a:mozilla:firefox:3.0.1
Mozilla Firefox 3.0.2	cpe:2.3:a:mozilla:firefox:3.0.2
Mozilla Firefox 3.0.3	cpe:2.3:a:mozilla:firefox:3.0.3