Vulnerability Name:

CVE-2015-0816

Assigned:2015-01-07
Published:2015-03-31
Updated:2017-09-16
Summary:Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
5.1 Medium (REDHAT CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-264
CWE-250
References:Source: SUSE
Type: UNKNOWN
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html

Source: SUSE
Type: UNKNOWN
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html

Source: SUSE
Type: UNKNOWN
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html

Source: SUSE
Type: UNKNOWN
http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html

Source: REDHAT
Type: UNKNOWN
http://rhn.redhat.com/errata/RHSA-2015-0766.html

Source: REDHAT
Type: UNKNOWN
http://rhn.redhat.com/errata/RHSA-2015-0771.html

Source: DEBIAN
Type: UNKNOWN
http://www.debian.org/security/2015/dsa-3211

Source: DEBIAN
Type: UNKNOWN
http://www.debian.org/security/2015/dsa-3212

Source: CONFIRM
Type: VENDOR_ADVISORY
http://www.mozilla.org/security/announce/2015/mfsa2015-33.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html

Source: BID
Type: UNKNOWN
73461

Source: SECTRACK
Type: UNKNOWN
1031996

Source: SECTRACK
Type: UNKNOWN
1032000

Source: UBUNTU
Type: UNKNOWN
http://www.ubuntu.com/usn/USN-2550-1

Source: UBUNTU
Type: UNKNOWN
http://www.ubuntu.com/usn/USN-2552-1

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.mozilla.org/show_bug.cgi?id=1144991

Source: GENTOO
Type: UNKNOWN
https://security.gentoo.org/glsa/201512-10

Source: EXPLOIT-DB
Type: UNKNOWN
37958

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:firefox:36.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox_esr:31.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:31.5:*:*:*:*:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

  • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

  • Configuration RedHat 4:
  • cpe:/a:redhat:rhel_productivity:5:*:*:*:*:*:*:*

  • Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20150816
    V
    CVE-2015-0816
    2017-09-25
    oval:org.cisecurity:def:30
    P
    DSA-3212-1 -- icedove -- security update
    2016-02-08
    oval:org.cisecurity:def:68
    P
    DSA-3211-1 -- iceweasel -- security update
    2016-02-08
    oval:com.redhat.rhsa:def:20150766
    P
    RHSA-2015:0766: firefox security update (Critical)
    2015-04-01
    oval:com.redhat.rhsa:def:20150771
    P
    RHSA-2015:0771: thunderbird security update (Important)
    2015-04-01
    oval:com.ubuntu.precise:def:20150816000
    V
    CVE-2015-0816 on Ubuntu 12.04 LTS (precise) - low.
    2015-04-01
    oval:com.ubuntu.trusty:def:20150816000
    V
    CVE-2015-0816 on Ubuntu 14.04 LTS (trusty) - low.
    2015-04-01
    BACK
    mozilla firefox 36.0.4
    mozilla firefox_esr 31.5.3
    mozilla thunderbird 31.5
    redhat enterprise_linux 7
    redhat enterprise_linux 5
    redhat enterprise_linux 6
    redhat rhel_productivity 5