1. Home
  2. Vulnerabilities
  3. CVE-2010-1213

CVE-2010-1213

CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.21 % (59th)
0.21% Progress
Affected Products 3
Advisories 12
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The importScripts Web Worker method in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not verify that content is valid JavaScript code, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted HTML document.

Weaknesses
CWE-20
Improper Input Validation
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2010-07-30 20:30:01
(14 years ago)
Updated Date
2017-09-19 01:30:37
(7 years ago)

Affected Products

Mozilla

Configuration #1

    CPE23 From Up To
  Mozilla Firefox 3.5.1 cpe:2.3:a:mozilla:firefox:3.5.1
  Mozilla Firefox 3.5.2 cpe:2.3:a:mozilla:firefox:3.5.2
  Mozilla Firefox 3.5.3 cpe:2.3:a:mozilla:firefox:3.5.3
  Mozilla Firefox 3.5.4 cpe:2.3:a:mozilla:firefox:3.5.4
  Mozilla Firefox 3.5.5 cpe:2.3:a:mozilla:firefox:3.5.5
  Mozilla Firefox 3.5.6 cpe:2.3:a:mozilla:firefox:3.5.6
  Mozilla Firefox 3.5.7 cpe:2.3:a:mozilla:firefox:3.5.7
  Mozilla Firefox 3.5.9 cpe:2.3:a:mozilla:firefox:3.5.9
  Mozilla Firefox 3.5.10 cpe:2.3:a:mozilla:firefox:3.5.10
  Mozilla Firefox 3.6 cpe:2.3:a:mozilla:firefox:3.6
  Mozilla Firefox 3.6.1 cpe:2.3:a:mozilla:firefox:3.6.1
  Mozilla Firefox 3.6.2 cpe:2.3:a:mozilla:firefox:3.6.2
  Mozilla Firefox 3.6.3 cpe:2.3:a:mozilla:firefox:3.6.3
  Mozilla Firefox 3.6.4 cpe:2.3:a:mozilla:firefox:3.6.4
  Mozilla Firefox 3.6.6 cpe:2.3:a:mozilla:firefox:3.6.6

Configuration #2

    CPE23 From Up To
  Mozilla Thunderbird 3.0 cpe:2.3:a:mozilla:thunderbird:3.0
  Mozilla Thunderbird 3.0.1 cpe:2.3:a:mozilla:thunderbird:3.0.1
  Mozilla Thunderbird 3.0.2 cpe:2.3:a:mozilla:thunderbird:3.0.2
  Mozilla Thunderbird 3.0.3 cpe:2.3:a:mozilla:thunderbird:3.0.3
  Mozilla Thunderbird 3.0.4 cpe:2.3:a:mozilla:thunderbird:3.0.4
  Mozilla Thunderbird 3.0.5 cpe:2.3:a:mozilla:thunderbird:3.0.5
  Mozilla Thunderbird 3.1 cpe:2.3:a:mozilla:thunderbird:3.1

Configuration #3

    CPE23 From Up To
  Mozilla Seamonkey 2.0.5 and prior versions cpe:2.3:a:mozilla:seamonkey <= 2.0.5
  Mozilla Seamonkey 1.0 cpe:2.3:a:mozilla:seamonkey:1.0
  Mozilla Seamonkey 1.0 Alpha cpe:2.3:a:mozilla:seamonkey:1.0:alpha
  Mozilla Seamonkey 1.0 Beta cpe:2.3:a:mozilla:seamonkey:1.0:beta
  Mozilla Seamonkey 1.0.1 cpe:2.3:a:mozilla:seamonkey:1.0.1
  Mozilla Seamonkey 1.0.2 cpe:2.3:a:mozilla:seamonkey:1.0.2
  Mozilla Seamonkey 1.0.3 cpe:2.3:a:mozilla:seamonkey:1.0.3
  Mozilla Seamonkey 1.0.4 cpe:2.3:a:mozilla:seamonkey:1.0.4
  Mozilla Seamonkey 1.0.5 cpe:2.3:a:mozilla:seamonkey:1.0.5
  Mozilla Seamonkey 1.0.6 cpe:2.3:a:mozilla:seamonkey:1.0.6
  Mozilla Seamonkey 1.0.7 cpe:2.3:a:mozilla:seamonkey:1.0.7
  Mozilla Seamonkey 1.0.8 cpe:2.3:a:mozilla:seamonkey:1.0.8
  Mozilla Seamonkey 1.0.9 cpe:2.3:a:mozilla:seamonkey:1.0.9
  Mozilla Seamonkey 1.1 cpe:2.3:a:mozilla:seamonkey:1.1
  Mozilla Seamonkey 1.1 Alpha cpe:2.3:a:mozilla:seamonkey:1.1:alpha
  Mozilla Seamonkey 1.1 Beta cpe:2.3:a:mozilla:seamonkey:1.1:beta
  Mozilla Seamonkey 1.1.1 cpe:2.3:a:mozilla:seamonkey:1.1.1
  Mozilla Seamonkey 1.1.2 cpe:2.3:a:mozilla:seamonkey:1.1.2
  Mozilla Seamonkey 1.1.3 cpe:2.3:a:mozilla:seamonkey:1.1.3
  Mozilla Seamonkey 1.1.4 cpe:2.3:a:mozilla:seamonkey:1.1.4
  Mozilla Seamonkey 1.1.5 cpe:2.3:a:mozilla:seamonkey:1.1.5
  Mozilla Seamonkey 1.1.6 cpe:2.3:a:mozilla:seamonkey:1.1.6
  Mozilla Seamonkey 1.1.7 cpe:2.3:a:mozilla:seamonkey:1.1.7
  Mozilla Seamonkey 1.1.8 cpe:2.3:a:mozilla:seamonkey:1.1.8
  Mozilla Seamonkey 1.1.9 cpe:2.3:a:mozilla:seamonkey:1.1.9
  Mozilla Seamonkey 1.1.10 cpe:2.3:a:mozilla:seamonkey:1.1.10
  Mozilla Seamonkey 1.1.11 cpe:2.3:a:mozilla:seamonkey:1.1.11
  Mozilla Seamonkey 1.1.12 cpe:2.3:a:mozilla:seamonkey:1.1.12
  Mozilla Seamonkey 1.1.13 cpe:2.3:a:mozilla:seamonkey:1.1.13
  Mozilla Seamonkey 1.1.14 cpe:2.3:a:mozilla:seamonkey:1.1.14
  Mozilla Seamonkey 1.1.15 cpe:2.3:a:mozilla:seamonkey:1.1.15
  Mozilla Seamonkey 1.1.16 cpe:2.3:a:mozilla:seamonkey:1.1.16
  Mozilla Seamonkey 1.1.17 cpe:2.3:a:mozilla:seamonkey:1.1.17
  Mozilla Seamonkey 1.1.18 cpe:2.3:a:mozilla:seamonkey:1.1.18
  Mozilla Seamonkey 1.1.19 cpe:2.3:a:mozilla:seamonkey:1.1.19
  Mozilla Seamonkey 1.5.0.8 cpe:2.3:a:mozilla:seamonkey:1.5.0.8
  Mozilla Seamonkey 1.5.0.9 cpe:2.3:a:mozilla:seamonkey:1.5.0.9
  Mozilla Seamonkey 1.5.0.10 cpe:2.3:a:mozilla:seamonkey:1.5.0.10
  Mozilla Seamonkey 2.0 cpe:2.3:a:mozilla:seamonkey:2.0
  Mozilla Seamonkey 2.0 Alpha 1 cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1
  Mozilla Seamonkey 2.0 Alpha 2 cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2
  Mozilla Seamonkey 2.0 Alpha 3 cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3
  Mozilla Seamonkey 2.0 Beta 1 cpe:2.3:a:mozilla:seamonkey:2.0:beta_1
  Mozilla Seamonkey 2.0 Beta 2 cpe:2.3:a:mozilla:seamonkey:2.0:beta_2
  Mozilla Seamonkey 2.0 Rc1 cpe:2.3:a:mozilla:seamonkey:2.0:rc1
  Mozilla Seamonkey 2.0 Rc2 cpe:2.3:a:mozilla:seamonkey:2.0:rc2
  Mozilla Seamonkey 2.0.1 cpe:2.3:a:mozilla:seamonkey:2.0.1
  Mozilla Seamonkey 2.0.2 cpe:2.3:a:mozilla:seamonkey:2.0.2
  Mozilla Seamonkey 2.0.3 cpe:2.3:a:mozilla:seamonkey:2.0.3
  Mozilla Seamonkey 2.0.4 cpe:2.3:a:mozilla:seamonkey:2.0.4
  Mozilla Seamonkey 2.0a1pre cpe:2.3:a:mozilla:seamonkey:2.0a1pre