VDB
CVE-2007-0778
CVE-2007-0778
PUBLISHED
CVSS 5.400000095367432 MEDIUM
The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 can generate hash collisions that cause page data to be appended to the wrong page cache, which allows remote attackers to obtain sensitive information or enable further attack vectors when the target page is reloaded from the cache.
EPSS 1.12% · 78.5th percentile
Risk Scores
CVSS v2.0
5.400000095367432
EPSS Score
1.12%
78.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| canonical | ubuntu_linux | 5.10, 6.06, 6.10 |
| debian | debian_linux | 3.1 |
| mozilla | firefox | 1.5, 2.0 |
| mozilla | seamonkey | 0 |
| n/a | n/a | n/a |
Timeline
- Feb 26, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
References
- None advisory
- RHSA-2007:0078 vendor-advisory
- 24395 third-party-advisory
- 20070226 rPSA-2007-0040-1 firefox mailing-list
- 24328 third-party-advisory
- RHSA-2007:0108 vendor-advisory
- GLSA-200703-04 vendor-advisory
- mozilla-diskcache-information-disclosure(32671) vdb
- GLSA-200703-08 vendor-advisory
- SSA:2007-066-03 vendor-advisory
- 24384 third-party-advisory
- 24457 third-party-advisory
- 24343 third-party-advisory
- DSA-1336 vendor-advisory
- HPSBUX02153 vendor-advisory
- 1017699 vdb
- ADV-2007-0718 vdb
- 24650 third-party-advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=347852 url
- USN-428-1 vendor-advisory
…and 32 more