CVE-2008-5505

N/A Unknown
Published: December 17, 2008 Modified: April 23, 2026
View on NVD

Description

Mozilla Firefox 3.x before 3.0.5 allows remote attackers to bypass intended privacy restrictions by using the persist attribute in an XUL element to create and access data entities that are similar to cookies.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/33188
Source: secalert@redhat.com
http://secunia.com/advisories/33203
Source: secalert@redhat.com
http://secunia.com/advisories/33216
Source: secalert@redhat.com
http://secunia.com/advisories/34501
Source: secalert@redhat.com
http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1
Source: secalert@redhat.com
http://www.mandriva.com/security/advisories?name=MDVSA-2008:245
Source: secalert@redhat.com
http://www.mozilla.org/security/announce/2008/mfsa2008-63.html
Source: secalert@redhat.com
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2008-1036.html
Source: secalert@redhat.com
http://www.securityfocus.com/bid/32882
Source: secalert@redhat.com
http://www.securitytracker.com/id?1021428
Source: secalert@redhat.com
http://www.vupen.com/english/advisories/2009/0977
Source: secalert@redhat.com
https://bugzilla.mozilla.org/show_bug.cgi?id=295994
Source: secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/47411
Source: secalert@redhat.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10443
Source: secalert@redhat.com
https://usn.ubuntu.com/690-1/
Source: secalert@redhat.com
http://secunia.com/advisories/33188
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/33203
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/33216
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/34501
Source: af854a3a-2127-422b-91ae-364da2661108
http://sunsolve.sun.com/search/document.do?assetkey=1-26-256408-1
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDVSA-2008:245
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mozilla.org/security/announce/2008/mfsa2008-63.html
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2008-1036.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/32882
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1021428
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2009/0977
Source: af854a3a-2127-422b-91ae-364da2661108
https://bugzilla.mozilla.org/show_bug.cgi?id=295994
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/47411
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10443
Source: af854a3a-2127-422b-91ae-364da2661108
https://usn.ubuntu.com/690-1/
Source: af854a3a-2127-422b-91ae-364da2661108

30 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.8%
75th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

mozilla

Related CVEs

CVE-2026-6175 N/A
CVE-2026-42171 7.8
CVE-2026-41488 3.1
CVE-2026-41481 6.5
CVE-2026-41478 9.9