{ "schema_version": "1.4.0", "id": "GHSA-wfgh-c975-36mr", "modified": "2025-04-09T04:02:06Z", "published": "2022-05-14T02:00:54Z", "aliases": [ "CVE-2008-5511" ], "details": "Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy and conduct cross-site scripting (XSS) attacks via an XBL binding to an \"unloaded document.\"", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-5511" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2008:1036" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2008:1037" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2009:0002" }, { "type": "WEB", "url": "https://access.redhat.com/security/cve/CVE-2008-5511" }, { "type": "WEB", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=451680" }, { "type": "WEB", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=464174" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=476285" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47417" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11881" }, { "type": "WEB", "url": "https://usn.ubuntu.com/690-1" }, { "type": "WEB", "url": "https://usn.ubuntu.com/690-3" }, { "type": "WEB", "url": "http://secunia.com/advisories/33184" }, { "type": "WEB", "url": "http://secunia.com/advisories/33188" }, { "type": "WEB", "url": "http://secunia.com/advisories/33189" }, { "type": "WEB", "url": "http://secunia.com/advisories/33203" }, { "type": "WEB", "url": "http://secunia.com/advisories/33204" }, { "type": "WEB", "url": "http://secunia.com/advisories/33205" }, { "type": "WEB", "url": "http://secunia.com/advisories/33216" }, { "type": "WEB", "url": "http://secunia.com/advisories/33231" }, { "type": "WEB", "url": "http://secunia.com/advisories/33232" }, { "type": "WEB", "url": "http://secunia.com/advisories/33408" }, { "type": "WEB", "url": "http://secunia.com/advisories/33415" }, { "type": "WEB", "url": "http://secunia.com/advisories/33421" }, { "type": "WEB", "url": "http://secunia.com/advisories/33433" }, { "type": "WEB", "url": "http://secunia.com/advisories/33434" }, { "type": "WEB", "url": "http://secunia.com/advisories/33523" }, { "type": "WEB", "url": "http://secunia.com/advisories/33547" }, { "type": "WEB", "url": "http://secunia.com/advisories/34501" }, { "type": "WEB", "url": "http://secunia.com/advisories/35080" }, { "type": "WEB", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1" }, { "type": "WEB", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-258748-1" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1696" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1697" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1704" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1707" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:244" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:245" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:012" }, { "type": "WEB", "url": "http://www.mozilla.org/security/announce/2008/mfsa2008-68.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2008-1036.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2008-1037.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2009-0002.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/32882" }, { "type": "WEB", "url": "http://www.securitytracker.com/id?1021418" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-690-2" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-701-1" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-701-2" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/0977" } ], "database_specific": { "cwe_ids": [ "CWE-79" ], "severity": "MODERATE", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2008-12-17T23:30:00Z" } }