CVE-2008-0418

Table of Contents

Impact:
Moderate
Public Date:
2008-02-07
Bugzilla:
431748: CVE-2008-0418 Mozilla chrome: directory traversal

The MITRE CVE dictionary describes this issue as:

Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8, when using "flat" addons, allows remote attackers to read arbitrary Javascript, image, and stylesheet files via the chrome: URI scheme, as demonstrated by stealing session information from sessionstore.js.

Find out more about CVE-2008-0418 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2008:0104 2008-02-08
Red Hat Enterprise Linux 5 (firefox) RHSA-2008:0103 2008-02-08
Red Hat Enterprise Linux 4 (firefox) RHSA-2008:0103 2008-02-08
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2008:0104 2008-02-08
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2008:0105 2008-02-08
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2008:0104 2008-02-08
Last Modified

CVE description copyright © 2017, The MITRE Corporation