Vulnerability Name:

CVE-2008-4066 (CCN-45358)

Assigned:2008-09-23
Published:2008-09-23
Updated:2017-09-29
Summary:Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows remote attackers to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via HTML-escaped low surrogate characters that are ignored by the HTML parser, as demonstrated by a "jav&#56325ascript" sequence, aka "HTML escaped low surrogates bug."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.4 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Bypass Security
References:Source: MISC
Type: Exploit
http://blogs.technet.com/bluehat/archive/2008/08/14/targeted-fuzzing.aspx

Source: MITRE
Type: CNA
CVE-2008-4066

Source: CONFIRM
Type: UNKNOWN
http://download.novell.com/Download?buildid=WZXONb-tqBw~

Source: JVN
Type: UNKNOWN
JVN#96950482

Source: JVNDB
Type: UNKNOWN
JVNDB-2011-000058

Source: SUSE
Type: UNKNOWN
SUSE-SA:2008:050

Source: CCN
Type: RHSA-2008-0882
Critical: seamonkey security update

Source: CCN
Type: RHSA-2008-0908
Moderate: thunderbird security update

Source: CCN
Type: SA31984
Mozilla Firefox 2 Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
31984

Source: SECUNIA
Type: Vendor Advisory
31985

Source: CCN
Type: SA32007
Mozilla Thunderbird Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32007

Source: CCN
Type: SA32010
Mozilla SeaMonkey Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32010

Source: CCN
Type: SA32011
Mozilla Firefox 3 Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
32012

Source: SECUNIA
Type: Vendor Advisory
32025

Source: SECUNIA
Type: Vendor Advisory
32042

Source: SECUNIA
Type: Vendor Advisory
32044

Source: SECUNIA
Type: Vendor Advisory
32082

Source: SECUNIA
Type: Vendor Advisory
32092

Source: SECUNIA
Type: Vendor Advisory
32144

Source: SECUNIA
Type: UNKNOWN
32185

Source: SECUNIA
Type: UNKNOWN
32196

Source: SECUNIA
Type: Vendor Advisory
32845

Source: CCN
Type: SA34501
Sun Solaris Firefox Multiple Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
34501

Source: CCN
Type: SECTRACK ID: 1020920
Mozilla Firefox Character Processing Bugs Permit Cross-Site Scripting Attacks

Source: SLACKWARE
Type: UNKNOWN
SSA:2008-269-02

Source: SLACKWARE
Type: UNKNOWN
SSA:2008-269-01

Source: SLACKWARE
Type: UNKNOWN
SSA:2008-270-01

Source: SUNALERT
Type: UNKNOWN
256408

Source: CCN
Type: Sun Alert ID: 256408
Multiple Security Vulnerabilities in Firefox Versions Before 2.0.0.19 May Allow Execution of Arbitrary Code or Access to Unauthorized Data

Source: CCN
Type: ASA-2008-389
thunderbird security update (RHSA-2008-0908)

Source: CCN
Type: ASA-2008-421
seamonkey security update (RHSA-2008-0882)

Source: CCN
Type: ASA-2009-158
Multiple Security Vulnerabilities in Firefox Versions Before 2.0.0.19 May Allow Execution of Arbitrary Code or Access to unauthorized Data (Sun 256408)

Source: CCN
Type: NORTEL BULLETIN ID: 2009009505, Rev 1
Nortel Response to Sun Alert 256408 - Solaris 10 - Vulnerabilities in Firefox May Allow Execution of Arbitrary Code

Source: DEBIAN
Type: UNKNOWN
DSA-1649

Source: DEBIAN
Type: UNKNOWN
DSA-1669

Source: DEBIAN
Type: DSA-1649
iceweasel -- several vulnerabilities

Source: DEBIAN
Type: DSA-1669
xulrunner -- several vulnerabilities

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2008:205

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2008:206

Source: CCN
Type: MFSA 2008-43
BOM characters, low surrogates stripped from JavaScript before execution

Source: CONFIRM
Type: UNKNOWN
http://www.mozilla.org/security/announce/2008/mfsa2008-43.html

Source: REDHAT
Type: Vendor Advisory
RHSA-2008:0882

Source: REDHAT
Type: Vendor Advisory
RHSA-2008:0908

Source: BID
Type: UNKNOWN
31346

Source: CCN
Type: BID-31346
Mozilla Firefox/SeaMonkey/Thunderbird Multiple Remote Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1020920

Source: MISC
Type: Exploit
http://www.thespanner.co.uk/2008/06/30/javascript-protocol-fuzz-results/

Source: CCN
Type: USN-645-1
Firefox and xulrunner vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-645-1

Source: CCN
Type: USN-645-2
Firefox vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-645-2

Source: CCN
Type: USN-645-3
Firefox and xulrunner regression

Source: CCN
Type: USN-647-1
Thunderbird vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-647-1

Source: VUPEN
Type: Vendor Advisory
ADV-2008-2661

Source: VUPEN
Type: Vendor Advisory
ADV-2009-0977

Source: CCN
Type: Bugzilla@Mozilla - Bug 448166
escaped low surrogates possible XSS hazard in URIs

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.mozilla.org/show_bug.cgi?id=448166

Source: XF
Type: UNKNOWN
firefox-htmlparser-security-bypass(45358)

Source: XF
Type: UNKNOWN
firefox-htmlparser-security-bypass(45358)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:8880

Source: FEDORA
Type: Vendor Advisory
FEDORA-2008-8401

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-8429

Source: SUSE
Type: SUSE-SA:2008:050
Mozilla security problems

Vulnerable Configuration:Configuration 1:
  • cpe:/a:mozilla:firefox:2.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.16:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/a:redhat:rhel_productivity:5:*:*:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:mozilla:firefox:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:firefox:2.0.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:mozilla:thunderbird:2.0.0.15:*:*:*:*:*:*:*
  • AND
  • cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.04:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:7.10:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*
  • OR cpe:/o:canonical:ubuntu:8.04::lts:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20084066
    V
    		CVE-2008-4066
    2017-09-27
    oval:org.mitre.oval:def:28693
    P
    		RHSA-2008:0908 -- thunderbird security update (Moderate)
    2015-08-17
    oval:org.mitre.oval:def:17610
    P
    		USN-647-1 -- mozilla-thunderbird, thunderbird vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:17626
    P
    		USN-645-1 -- firefox, firefox-3.0, xulrunner-1.9 vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:17661
    P
    		USN-645-3 -- firefox-3.0, xulrunner-1.9 regression
    2014-06-30
    oval:org.mitre.oval:def:17769
    P
    		USN-645-2 -- firefox vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:19874
    P
    		DSA-1669-1 xulrunner - several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:7657
    P
    		DSA-1649 iceweasel -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:19884
    P
    		DSA-1649-1 iceweasel - several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:7740
    P
    		DSA-1669 xulrunner -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:22664
    P
    		ELSA-2008:0908: thunderbird security update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:8880
    V
    		Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows remote attackers to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via HTML-escaped low surrogate characters that are ignored by the HTML parser, as demonstrated by a "javascript" sequence, aka "HTML escaped low surrogates bug."
    2013-04-29
    oval:org.debian:def:1669
    V
    		several vulnerabilities
    2008-11-23
    oval:org.debian:def:1649
    V
    		several vulnerabilities
    2008-10-08
    oval:com.redhat.rhsa:def:20080908
    P
    		RHSA-2008:0908: thunderbird security update (Moderate)
    2008-10-01
    oval:com.redhat.rhsa:def:20080882
    P
    		RHSA-2008:0882: seamonkey security update (Critical)
    2008-09-24
    BACK
    mozilla firefox 2.0.0.14
    mozilla firefox 2.0.0.15
    mozilla firefox 2.0.0.16
    mozilla firefox 2.0
    mozilla firefox 2.0.0.1
    mozilla firefox 2.0.0.2
    mozilla firefox 2.0.0.3
    mozilla firefox 2.0.0.4
    mozilla firefox 2.0.0.5
    mozilla thunderbird 2.0.0.5
    mozilla seamonkey 1.1.3
    mozilla firefox 2.0.0.6
    mozilla firefox 2.0.0.9
    mozilla thunderbird 2.0.0.4
    mozilla thunderbird 2.0.0.3
    mozilla thunderbird 2.0.0.2
    mozilla thunderbird 2.0.0.1
    mozilla seamonkey 1.1.2
    mozilla seamonkey 1.1.1
    mozilla firefox 2.0.0.7
    mozilla thunderbird 2.0.0.6
    mozilla thunderbird 2.0.0.7
    mozilla seamonkey 1.1.4
    mozilla firefox 2.0.0.8
    mozilla seamonkey 1.1.5
    mozilla seamonkey 1.1.6
    mozilla firefox 2.0.0.11
    mozilla firefox 2.0.0.12
    mozilla thunderbird 2.0.0.9
    mozilla firefox 2.0.0.10
    mozilla firefox 2.0.0.13
    mozilla thunderbird 2.0.0.0
    mozilla thunderbird 2.0.0.11
    mozilla thunderbird 2.0.0.12
    mozilla thunderbird 2.0.0.13
    mozilla thunderbird 2.0.0.8
    mozilla seamonkey 1.1.7
    mozilla seamonkey 1.1.8
    mozilla seamonkey 1.1.9
    mozilla firefox 2.0.0.14
    mozilla firefox 2.0.0.15
    mozilla seamonkey 1.1.10
    mozilla seamonkey 1.1.11
    mozilla thunderbird 2.0.0.14
    mozilla thunderbird 2.0.0.16
    mozilla thunderbird 2.0.0.15
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    suse suse linux 9.0
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    mandrakesoft mandrake linux corporate server 3.0
    redhat enterprise linux 4
    redhat enterprise linux 4
    novell linux desktop 9
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat linux advanced workstation 2.1
    canonical ubuntu 6.06
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux 2008.0
    debian debian linux 4.0
    canonical ubuntu 7.04
    redhat enterprise linux 5
    canonical ubuntu 7.10
    mandrakesoft mandrake linux 2008.0
    mandrakesoft mandrake linux 2008.1 x86_64
    novell open enterprise server *
    novell opensuse 10.2
    novell opensuse 10.3
    mandrakesoft mandrake linux 2008.1
    canonical ubuntu 8.04
    novell opensuse 11.0
    novell suse linux enterprise server 10 sp2