{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-03-31T00:00:00", "descriptions": [{"lang": "en", "value": "Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-16T09:57:01", "orgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "shortName": "mozilla"}, "references": [{"name": "1031996", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031996"}, {"name": "73461", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/73461"}, {"name": "openSUSE-SU-2015:0892", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html"}, {"name": "GLSA-201512-10", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201512-10"}, {"name": "DSA-3212", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2015/dsa-3212"}, {"name": "37958", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/37958/"}, {"name": "SUSE-SU-2015:0704", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html"}, {"name": "USN-2552-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2552-1"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1144991"}, {"name": "RHSA-2015:0766", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0766.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.mozilla.org/security/announce/2015/mfsa2015-33.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html"}, {"name": "openSUSE-SU-2015:1266", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html"}, {"name": "USN-2550-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2550-1"}, {"name": "1032000", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1032000"}, {"name": "openSUSE-SU-2015:0677", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html"}, {"name": "RHSA-2015:0771", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0771.html"}, {"name": "DSA-3211", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2015/dsa-3211"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@mozilla.org", "ID": "CVE-2015-0816", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1031996", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031996"}, {"name": "73461", "refsource": "BID", "url": "http://www.securityfocus.com/bid/73461"}, {"name": "openSUSE-SU-2015:0892", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html"}, {"name": "GLSA-201512-10", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201512-10"}, {"name": "DSA-3212", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2015/dsa-3212"}, {"name": "37958", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/37958/"}, {"name": "SUSE-SU-2015:0704", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html"}, {"name": "USN-2552-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2552-1"}, {"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1144991", "refsource": "CONFIRM", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1144991"}, {"name": "RHSA-2015:0766", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0766.html"}, {"name": "http://www.mozilla.org/security/announce/2015/mfsa2015-33.html", "refsource": "CONFIRM", "url": "http://www.mozilla.org/security/announce/2015/mfsa2015-33.html"}, {"name": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html"}, {"name": "openSUSE-SU-2015:1266", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html"}, {"name": "USN-2550-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/USN-2550-1"}, {"name": "1032000", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1032000"}, {"name": "openSUSE-SU-2015:0677", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html"}, {"name": "RHSA-2015:0771", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0771.html"}, {"name": "DSA-3211", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2015/dsa-3211"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:26:10.591Z"}, "title": "CVE Program Container", "references": [{"name": "1031996", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031996"}, {"name": "73461", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/73461"}, {"name": "openSUSE-SU-2015:0892", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html"}, {"name": "GLSA-201512-10", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201512-10"}, {"name": "DSA-3212", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2015/dsa-3212"}, {"name": "37958", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/37958/"}, {"name": "SUSE-SU-2015:0704", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html"}, {"name": "USN-2552-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2552-1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1144991"}, {"name": "RHSA-2015:0766", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0766.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.mozilla.org/security/announce/2015/mfsa2015-33.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html"}, {"name": "openSUSE-SU-2015:1266", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html"}, {"name": "USN-2550-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2550-1"}, {"name": "1032000", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1032000"}, {"name": "openSUSE-SU-2015:0677", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html"}, {"name": "RHSA-2015:0771", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0771.html"}, {"name": "DSA-3211", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2015/dsa-3211"}]}]}, "cveMetadata": {"assignerOrgId": "f16b083a-5664-49f3-a51e-8d479e5ed7fe", "assignerShortName": "mozilla", "cveId": "CVE-2015-0816", "datePublished": "2015-04-01T10:00:00", "dateReserved": "2015-01-07T00:00:00", "dateUpdated": "2024-08-06T04:26:10.591Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "matchCriteriaId": "4E600CCE-7BA3-410C-B089-9C7C27EE7D82", "versionEndIncluding": "36.0.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*", "matchCriteriaId": "FDEF9754-B549-4AAC-926B-404143EA27FF", "versionEndIncluding": "31.5.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "matchCriteriaId": "FC3823E9-1BAA-4402-95E2-7AF5B793DEBE", "versionEndIncluding": "31.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js."}, {"lang": "es", "value": "Mozilla Firefox anterior a 37.0, Firefox ESR 31.x anterior a 31.6, y Thunderbird anterior a 31.6 no restringe correctamente las URLs resource:, lo que facilita a atacantes remotos ejecutar c\u00f3digo JavaScript arbitrario con privilegios chrome mediante el aprovechamiento de la habilidad de evadir Same Origin Policy, tal y como fue demostrado por la URL resource: asociada con PDF.js."}], "id": "CVE-2015-0816", "lastModified": "2017-09-17T01:29:01.170", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-04-01T10:59:14.910", "references": [{"source": "security@mozilla.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html"}, {"source": "security@mozilla.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00006.html"}, {"source": "security@mozilla.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00012.html"}, {"source": "security@mozilla.org", "url": "http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html"}, {"source": "security@mozilla.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0766.html"}, {"source": "security@mozilla.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0771.html"}, {"source": "security@mozilla.org", "url": "http://www.debian.org/security/2015/dsa-3211"}, {"source": "security@mozilla.org", "url": "http://www.debian.org/security/2015/dsa-3212"}, {"source": "security@mozilla.org", "tags": ["Vendor Advisory"], "url": "http://www.mozilla.org/security/announce/2015/mfsa2015-33.html"}, {"source": "security@mozilla.org", "url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html"}, {"source": "security@mozilla.org", "url": "http://www.securityfocus.com/bid/73461"}, {"source": "security@mozilla.org", "url": "http://www.securitytracker.com/id/1031996"}, {"source": "security@mozilla.org", "url": "http://www.securitytracker.com/id/1032000"}, {"source": "security@mozilla.org", "url": "http://www.ubuntu.com/usn/USN-2550-1"}, {"source": "security@mozilla.org", "url": "http://www.ubuntu.com/usn/USN-2552-1"}, {"source": "security@mozilla.org", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1144991"}, {"source": "security@mozilla.org", "url": "https://security.gentoo.org/glsa/201512-10"}, {"source": "security@mozilla.org", "url": "https://www.exploit-db.com/exploits/37958/"}], "sourceIdentifier": "security@mozilla.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank Mozilla project for reporting this issue. Upstream acknowledges Mariusz Mlynski as the original reporter.", "affected_release": [{"advisory": "RHSA-2015:0766", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "firefox-0:31.6.0-2.el5_11", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0771", "cpe": "cpe:/o:redhat:enterprise_linux:5", "package": "thunderbird-0:31.6.0-1.el5_11", "product_name": "Red Hat Enterprise Linux 5", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0766", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "firefox-0:31.6.0-2.el6_6", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0771", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "thunderbird-0:31.6.0-1.el6_6", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0766", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "firefox-0:31.6.0-2.el7_1", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0766", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xulrunner-0:31.6.0-2.el7_1", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2015-04-01T00:00:00Z"}, {"advisory": "RHSA-2015:0771", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "thunderbird-0:31.6.0-1.el7_1", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2015-04-01T00:00:00Z"}], "bugzilla": {"description": "Mozilla: resource: // documents can load privileged pages (MFSA 2015-33)", "id": "1207072", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1207072"}, "csaw": false, "cvss": {"cvss_base_score": "5.1", "cvss_scoring_vector": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "status": "verified"}, "cwe": "CWE-250", "details": ["Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js.", "A flaw was found in the way documents were loaded via resource URLs in, for example, Mozilla's PDF.js PDF file viewer. An attacker could use this flaw to bypass certain restrictions and under certain conditions even execute arbitrary code with the privileges of the user running Firefox."], "name": "CVE-2015-0816", "public_date": "2015-03-31T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2015-0816\nhttps://nvd.nist.gov/vuln/detail/CVE-2015-0816\nhttp://www.mozilla.org/security/announce/2015/mfsa2015-33.html"], "threat_severity": "Moderate"}