CVE-2007-3089 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2007-3089

CVE-2007-3089

June 06, 2007

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystroke values from window.event, aka the "promiscuous IFRAME access bug," a related issue to CVE-2006-4568.

Related Resources (53)

http://www.us-cert.gov/cas/techalerts/TA07-199A.html

http://support.novell.com/techcenter/psdb/07d098f99c9fe6956523beae37f32fda.html

http://secunia.com/advisories/28135

http://archives.neohapsis.com/archives/fulldisclosure/2007-06/0026.html

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1

http://www.securityfocus.com/bid/24286

http://www.vupen.com/english/advisories/2007/2564

ftp://patches.sgi.com/support/free/security/advisories/20070701-01-P.asc

https://bugzilla.mozilla.org/show_bug.cgi?id=382686

http://www.securitytracker.com/id?1018412

http://secunia.com/advisories/26211

http://www.redhat.com/support/errata/RHSA-2007-0724.html

http://secunia.com/advisories/26179

https://bugzilla.mozilla.org/show_bug.cgi?id=381300

ftp://ftp.slackware.com/pub/slackware/slackware-12.0/ChangeLog.txt

http://secunia.com/advisories/26095

http://www.vupen.com/english/advisories/2007/4256

http://www.mozilla.org/security/announce/2007/mfsa2007-20.html

http://secunia.com/advisories/26205

http://secunia.com/advisories/26216

http://secunia.com/advisories/26204

http://lcamtuf.coredump.cx/ifsnatch/

http://www.debian.org/security/2007/dsa-1338

http://secunia.com/advisories/26460

http://osvdb.org/38024

http://secunia.com/advisories/26149

http://www.debian.org/security/2007/dsa-1337

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

http://www.securityfocus.com/archive/1/474226/100/0/threaded

http://secunia.com/advisories/26106

http://secunia.com/advisories/26107

http://www.novell.com/linux/security/advisories/2007_49_mozilla.html

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1

http://secunia.com/advisories/26271

http://secunia.com/advisories/26072

http://www.gentoo.org/security/en/glsa/glsa-200708-09.xml

http://secunia.com/advisories/26159

http://securityreason.com/securityalert/2781

http://www.securityfocus.com/archive/1/470446/100/0/threaded

https://access.redhat.com/security/cve/CVE-2007-3089

http://www.debian.org/security/2007/dsa-1339

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11122

http://www.redhat.com/support/errata/RHSA-2007-0722.html

http://www.redhat.com/support/errata/RHSA-2007-0723.html

http://secunia.com/advisories/26151

http://secunia.com/advisories/26103

http://www.kb.cert.org/vuls/id/143297

https://exchange.xforce.ibmcloud.com/vulnerabilities/34701

http://www.ubuntu.com/usn/usn-490-1

http://secunia.com/advisories/25589

http://secunia.com/advisories/26258

http://www.securityfocus.com/archive/1/474542/100/0/threaded

http://www.mandriva.com/security/advisories?name=MDKSA-2007:152

Do you need more information?

CVSS v4

Base Score:

6.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

NONE

Vulnerable System Integrity

LOW

Vulnerable System Availability

NONE

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

3.7

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

CVSS v2

Base Score:

4.3

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

EPSS

Base Score:

25.02