{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T18:37:00.305","vulnerabilities":[{"cve":{"id":"CVE-2008-0417","sourceIdentifier":"secalert@redhat.com","published":"2008-02-08T22:00:00.000","lastModified":"2025-04-09T00:30:58.490","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows remote user-assisted web sites to corrupt the user's password store via newlines that are not properly handled when the user saves a password."},{"lang":"es","value":"Vulnerabilidad de inyección CRLF en versiones anteriores a Mozilla Firefox 2.0.0.12 que permite a sitios web remotos con la intervención del usuario corromper la contraseña de usuario almacenada en las nuevas líneas que no son manejadas adecuadamente cuando el usuario guarda la contraseña."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*","versionEndIncluding":"2.0.0.11","matchCriteriaId":"B3E4F934-1CC7-475C-B425-BEEF29AED912"}]}]}],"references":[{"url":"http://browser.netscape.com/releasenotes/","source":"secalert@redhat.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00006.html","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28766","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28818","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28839","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28864","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28865","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28877","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28879","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28924","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28939","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/28958","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29086","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/29567","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/30327","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/30620","source":"secalert@redhat.com"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1","source":"secalert@redhat.com"},{"url":"http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html","source":"secalert@redhat.com"},{"url":"http://wiki.rpath.com/Advisories:rPSA-2008-0051","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2008/dsa-1484","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2008/dsa-1485","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2008/dsa-1489","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2008/dsa-1506","source":"secalert@redhat.com"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml","source":"secalert@redhat.com"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:048","source":"secalert@redhat.com"},{"url":"http://www.mozilla.org/security/announce/2008/mfsa2008-04.html","source":"secalert@redhat.com"},{"url":"http://www.redhat.com/support/errata/RHSA-2008-0103.html","source":"secalert@redhat.com"},{"url":"http://www.redhat.com/support/errata/RHSA-2008-0104.html","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/archive/1/487826/100/0/threaded","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/archive/1/488002/100/0/threaded","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/27683","source":"secalert@redhat.com"},{"url":"http://www.securitytracker.com/id?1019334","source":"secalert@redhat.com"},{"url":"http://www.ubuntu.com/usn/usn-576-1","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2008/0453/references","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2008/0627/references","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2008/1793/references","source":"secalert@redhat.com"},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=394610","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11154","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00274.html","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00309.html","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00381.html","source":"secalert@redhat.com"},{"url":"http://browser.netscape.com/releasenotes/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00006.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28766","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28818","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28839","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28864","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28865","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28877","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28879","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28924","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28939","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/28958","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29086","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/29567","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/30327","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/30620","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.novell.com/techcenter/psdb/6251b18e050302ebe7fe74294b55c818.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://wiki.rpath.com/Advisories:rPSA-2008-0051","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1484","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1485","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1489","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2008/dsa-1506","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2008:048","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.mozilla.org/security/announce/2008/mfsa2008-04.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2008-0103.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.redhat.com/support/errata/RHSA-2008-0104.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/487826/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/488002/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/27683","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1019334","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/usn-576-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/0453/references","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/0627/references","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2008/1793/references","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=394610","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11154","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00274.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00309.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00381.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}