Red Hat Customer Portal

Skip to main content

CVE-2008-0415

Impact:
Critical
Public Date:
2008-02-07
Bugzilla:
431739: CVE-2008-0415 Mozilla arbitrary code execution

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 allows remote attackers to execute script outside of the sandbox and conduct cross-site scripting (XSS) attacks via multiple vectors including the XMLDocument.load function, aka "JavaScript privilege escalation bugs."

Find out more about CVE-2008-0415 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2008:0104 2008-02-08
Red Hat Enterprise Linux 5 (firefox) RHSA-2008:0103 2008-02-08
Red Hat Enterprise Linux 4 (firefox) RHSA-2008:0103 2008-02-08
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2008:0104 2008-02-08
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2008:0104 2008-02-08

Last Modified