Mozilla Firefox Cross Site Scripting Attack
2015年7月21日
危険度: : 中
CVE識別番号: CVE-2008-4065
概要
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via byte order mark (BOM) characters that are removed from JavaScript code before execution, aka "Stripped BOM characters bug."
トレンドマイクロの対策
Apply associated Trend Micro DPI Rules.
対応方法
Trend Micro Deep Security DPI Rule Number: 1002897
Trend Micro Deep Security DPI Rule Name: 1002897 - Mozilla Firefox Cross Site Scripting Attack
影響を受けるソフトウェア
- mozilla firefox 0.10
- mozilla firefox 0.10.1
- mozilla firefox 0.8
- mozilla firefox 0.9
- mozilla firefox 0.9.1
- mozilla firefox 0.9.2
- mozilla firefox 0.9.3
- mozilla firefox 0.9_rc
- mozilla firefox 1.0
- mozilla firefox 1.0.1
- mozilla firefox 1.0.2
- mozilla firefox 1.0.3
- mozilla firefox 1.0.4
- mozilla firefox 1.0.5
- mozilla firefox 1.0.6
- mozilla firefox 1.0.7
- mozilla firefox 1.0.8
- mozilla firefox 1.5
- mozilla firefox 1.5.0.1
- mozilla firefox 1.5.0.10
- mozilla firefox 1.5.0.11
- mozilla firefox 1.5.0.12
- mozilla firefox 1.5.0.2
- mozilla firefox 1.5.0.3
- mozilla firefox 1.5.0.4
- mozilla firefox 1.5.0.5
- mozilla firefox 1.5.0.6
- mozilla firefox 1.5.0.7
- mozilla firefox 1.5.0.8
- mozilla firefox 1.5.0.9
- mozilla firefox 1.5.1
- mozilla firefox 1.5.2
- mozilla firefox 1.5.3
- mozilla firefox 1.5.4
- mozilla firefox 1.5.5
- mozilla firefox 1.5.6
- mozilla firefox 1.5.7
- mozilla firefox 1.8
- mozilla firefox 2.0
- mozilla firefox 2.0.0.1
- mozilla firefox 2.0.0.10
- mozilla firefox 2.0.0.11
- mozilla firefox 2.0.0.12
- mozilla firefox 2.0.0.13
- mozilla firefox 2.0.0.14
- mozilla firefox 2.0.0.15
- mozilla firefox 2.0.0.16
- mozilla firefox 3.0
- mozilla firefox 3.0.1
- mozilla seamonkey 1.0
- mozilla seamonkey 1.0.1
- mozilla seamonkey 1.0.2
- mozilla seamonkey 1.0.3
- mozilla seamonkey 1.0.4
- mozilla seamonkey 1.0.5
- mozilla seamonkey 1.0.6
- mozilla seamonkey 1.0.7
- mozilla seamonkey 1.0.8
- mozilla seamonkey 1.0.9
- mozilla seamonkey 1.0.99
- mozilla seamonkey 1.1
- mozilla seamonkey 1.1.1
- mozilla seamonkey 1.1.10
- mozilla seamonkey 1.1.11
- mozilla thunderbird 0.1
- mozilla thunderbird 0.2
- mozilla thunderbird 0.3
- mozilla thunderbird 0.4
- mozilla thunderbird 0.5
- mozilla thunderbird 0.6
- mozilla thunderbird 0.7
- mozilla thunderbird 0.7.1
- mozilla thunderbird 0.7.2
- mozilla thunderbird 0.7.3
- mozilla thunderbird 0.8
- mozilla thunderbird 0.9
- mozilla thunderbird 1.0
- mozilla thunderbird 1.0.1
- mozilla thunderbird 1.0.2
- mozilla thunderbird 1.0.3
- mozilla thunderbird 1.0.4
- mozilla thunderbird 1.0.5
- mozilla thunderbird 1.0.6
- mozilla thunderbird 1.0.7
- mozilla thunderbird 1.0.8
- mozilla thunderbird 1.5
- mozilla thunderbird 1.5.0.1
- mozilla thunderbird 1.5.0.10
- mozilla thunderbird 1.5.0.11
- mozilla thunderbird 1.5.0.2
- mozilla thunderbird 1.5.0.3
- mozilla thunderbird 1.5.0.4
- mozilla thunderbird 1.5.0.6
- mozilla thunderbird 1.5.0.7
- mozilla thunderbird 1.5.0.8
- mozilla thunderbird 1.5.0.9
- mozilla thunderbird 1.5.1
- mozilla thunderbird 1.5.2
- mozilla thunderbird 1.7.1
- mozilla thunderbird 1.7.3
- mozilla thunderbird 2.0.0.0
- mozilla thunderbird 2.0.0.1
- mozilla thunderbird 2.0.0.11
- mozilla thunderbird 2.0.0.12
- mozilla thunderbird 2.0.0.13
- mozilla thunderbird 2.0.0.14
- mozilla thunderbird 2.0.0.15
- mozilla thunderbird 2.0.0.16
- mozilla thunderbird 2.0.0.2
- mozilla thunderbird 2.0.0.3
- mozilla thunderbird 2.0.0.4
- mozilla thunderbird 2.0.0.5
- mozilla thunderbird 2.0.0.6
- mozilla thunderbird 2.0.0.8
- mozilla thunderbird 2.0.0.9
- mozilla thunderbird 2.0_.12
- mozilla thunderbird 2.0_.13
- mozilla thunderbird 2.0_.14
- mozilla thunderbird 2.0_.4
- mozilla thunderbird 2.0_.5
- mozilla thunderbird 2.0_.6
- mozilla thunderbird 2.0_.9
- mozilla thunderbird 2.0_8