Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2008-5513

Date: December 17, 2008

Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 allows remote attackers to bypass the same origin policy, inject content into documents associated with other domains, and conduct cross-site scripting (XSS) attacks via unknown vectors related to restoration of SessionStore data.

Severity Score

Related Resources (28)

http://www.ubuntu.com/usn/usn-690-2
https://usn.ubuntu.com/690-1/
http://secunia.com/advisories/33189
http://secunia.com/advisories/33188
http://secunia.com/advisories/33523
http://secunia.com/advisories/33184
http://www.redhat.com/support/errata/RHSA-2008-1036.html
http://secunia.com/advisories/33203
http://secunia.com/advisories/33421
http://www.securityfocus.com/bid/32882
http://www.vupen.com/english/advisories/2009/0977
https://people.canonical.com/~ubuntu-security/cve/CVE-2008-5513
http://www.mozilla.org/security/announce/2008/mfsa2008-69.html
http://www.securitytracker.com/id?1021421
http://secunia.com/advisories/34501
http://secunia.com/advisories/33231
http://www.debian.org/security/2009/dsa-1707
http://secunia.com/advisories/33216
https://access.redhat.com/security/cve/CVE-2008-5513
http://www.mandriva.com/security/advisories?name=MDVSA-2008:244
https://exchange.xforce.ibmcloud.com/vulnerabilities/47418
http://www.mandriva.com/security/advisories?name=MDVSA-2008:245
http://www.redhat.com/support/errata/RHSA-2008-1037.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1
http://www.redhat.com/support/errata/RHSA-2009-0002.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10389
https://nvd.nist.gov/vuln/detail/CVE-2008-5513
https://www.mend.io/vulnerability-database/CVE-2008-5513

Severity Score

Weakness Type (CWE)

Cross-Site Scripting (XSS)

CWE-79

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): NONE
Integrity (I): LOW
Availability (A): NONE

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): NONE
Integrity (I): PARTIAL
Availability (A): NONE
Additional information:

Do you need more information?

Contact Us