Oval Definition:oval:org.opensuse.security:def:20082933
Revision Date:2015-11-16Version:1
Title:CVE-2008-2933
Description:
Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs, or read arbitrary local files via manipulations involving a series of URIs that is not entirely handled by a vector application, as exploited in conjunction with CVE-2008-2540. NOTE: this issue exists because of an insufficient fix for CVE-2005-2267.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-2933
Platform(s):openSUSE 10.2
openSUSE 10.3
openSUSE 11.0
Product(s):
Definition Synopsis
  • suse110 is installed
  • AND Package Information
  • MozillaFirefox-translations less than 3.0.1-0.1
  • OR MozillaFirefox less than 3.0.1-0.1
  • OR mozilla-xulrunner190-32bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-64bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-devel less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-gnomevfs-32bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-gnomevfs-64bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-gnomevfs less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-translations-32bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-translations-64bit less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190-translations less than 1.9.0.1-0.1
  • OR mozilla-xulrunner190 less than 1.9.0.1-0.1
    • BACK