Total vulnerabilities in the database
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy and conduct cross-site scripting (XSS) attacks via an XBL binding to an "unloaded document."
| Software | From | Fixed in |
|---|---|---|
| mozilla / firefox | 2.0 | 2.0.0.19 |
| mozilla / firefox | 3.0 | 3.0.5 |
| mozilla / seamonkey | 1.0 | 1.1.14 |
| mozilla / thunderbird | 2.0 | 2.0.0.19 |
| canonical / ubuntu_linux | 6.06 | 6.06.x |
| canonical / ubuntu_linux | 7.10 | 7.10.x |
| canonical / ubuntu_linux | 8.04 | 8.04.x |
| canonical / ubuntu_linux | 8.10 | 8.10.x |
| debian / debian_linux | 5.0 | 5.0.x |
| debian / debian_linux | 4.0 | 4.0.x |