1. Home
  2. Vulnerabilities
  3. CVE-2009-3375

CVE-2009-3375

CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.81 % (82th)
0.81% Progress
Affected Products 1
Advisories 6
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.

Weaknesses
CWE-264
Permissions, Privileges, and Access Controls
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2009-10-29 14:30:00
(15 years ago)
Updated Date
2017-09-19 01:29:35
(7 years ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Firefox 3.0 cpe:2.3:a:mozilla:firefox:3.0
  Mozilla Firefox 3.0 Alpha cpe:2.3:a:mozilla:firefox:3.0:alpha
  Mozilla Firefox 3.0 Beta2 cpe:2.3:a:mozilla:firefox:3.0:beta2
  Mozilla Firefox 3.0 Beta5 cpe:2.3:a:mozilla:firefox:3.0:beta5
  Mozilla Firefox 3.0.1 cpe:2.3:a:mozilla:firefox:3.0.1
  Mozilla Firefox 3.0.2 cpe:2.3:a:mozilla:firefox:3.0.2
  Mozilla Firefox 3.0.3 cpe:2.3:a:mozilla:firefox:3.0.3
  Mozilla Firefox 3.0.4 cpe:2.3:a:mozilla:firefox:3.0.4
  Mozilla Firefox 3.0.5 cpe:2.3:a:mozilla:firefox:3.0.5
  Mozilla Firefox 3.0.6 cpe:2.3:a:mozilla:firefox:3.0.6
  Mozilla Firefox 3.0.7 cpe:2.3:a:mozilla:firefox:3.0.7
  Mozilla Firefox 3.0.8 cpe:2.3:a:mozilla:firefox:3.0.8
  Mozilla Firefox 3.0.9 cpe:2.3:a:mozilla:firefox:3.0.9
  Mozilla Firefox 3.0.10 cpe:2.3:a:mozilla:firefox:3.0.10
  Mozilla Firefox 3.0.11 cpe:2.3:a:mozilla:firefox:3.0.11
  Mozilla Firefox 3.0.12 cpe:2.3:a:mozilla:firefox:3.0.12
  Mozilla Firefox 3.0.13 cpe:2.3:a:mozilla:firefox:3.0.13
  Mozilla Firefox 3.5 cpe:2.3:a:mozilla:firefox:3.5
  Mozilla Firefox 3.5.1 cpe:2.3:a:mozilla:firefox:3.5.1
  Mozilla Firefox 3.5.2 cpe:2.3:a:mozilla:firefox:3.5.2
  Mozilla Firefox 3.5.3 cpe:2.3:a:mozilla:firefox:3.5.3