CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-06-05 06:38:06 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
6cd0d0806c9bf647d01eb3deca931ca47bebcbc7
CVEs-PoC/2008/CVE-2008-3835.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

21 lines
891 B
Markdown
Raw Blame History

### [CVE-2008-3835](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3835)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)
### Description
The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox before 2.0.0.17, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code via unknown vectors.
### POC
#### Reference
- http://www.ubuntu.com/usn/usn-645-1
- http://www.ubuntu.com/usn/usn-645-2
- http://www.ubuntu.com/usn/usn-647-1
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9643
#### Github
No PoCs found on GitHub currently.
Reference in New Issue View Git Blame Copy Permalink