CVE-2009-3078

Published: 10 September 2009

Visual truncation vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x before 3.5.3, allows remote attackers to trigger a vertical scroll and spoof URLs via unspecified Unicode characters with a tall line-height property.

Priority

Status

Package	Release	Status
firefox-3.0 Launchpad, Ubuntu, Debian	dapper	Does not exist
	hardy	Released (3.0.14+build2+nobinonly-0ubuntu0.8.04.1)
	intrepid	Released (3.0.14+build2+nobinonly-0ubuntu0.8.10.1)
	jaunty	Released (3.0.14+build2+nobinonly-0ubuntu0.9.04.1)
	upstream	Released (3.0.14)
firefox-3.5 Launchpad, Ubuntu, Debian	dapper	Does not exist
	hardy	Does not exist
	intrepid	Does not exist
	jaunty	Released (3.5.3+build1+nobinonly-0ubuntu0.9.04.2)
	upstream	Released (3.5.3)
xulrunner-1.9 Launchpad, Ubuntu, Debian	dapper	Does not exist
	hardy	Released (1.9.0.14+build2+nobinonly-0ubuntu0.8.04.1)
	intrepid	Released (1.9.0.14+build2+nobinonly-0ubuntu0.8.10.1)
	jaunty	Released (1.9.0.14+build2+nobinonly-0ubuntu0.9.04.1)
	upstream	Released (1.9.0.14)
xulrunner-1.9.1 Launchpad, Ubuntu, Debian	dapper	Does not exist
	hardy	Does not exist
	intrepid	Does not exist
	jaunty	Released (1.9.1.3+build1+nobinonly-0ubuntu0.9.04.2)
	upstream	Released (1.9.1.3)

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2009-3078

Priority

Status

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading