CVE-2009-4630

Name
CVE-2009-4630
Description
Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the vendor disputes the significance of this issue, stating "I don't think we necessarily need to worry about that case."
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://bugzilla.mozilla.org/show_bug.cgi?id=453403
cve@mitre.org https://bugzilla.mozilla.org/show_bug.cgi?id=492196

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* firefox == None == None
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:* seamonkey == None == None
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* thunderbird == None == None

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
firefox edge-community 145.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 144.0.2-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 144.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 144.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 143.0.1-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 143.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 143.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 142.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 142.0-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 142.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 141.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 140.0.4-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 140.0.4-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 140.0.2-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 140.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 140.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 139.0.4-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 139.0.2-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 139.0-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 139.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 138.0.4-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 138.0.3-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 138.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 138.0-r2 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 138.0-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 138.0-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 138.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 138.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 137.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 137.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 137.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 136.0.4-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 136.0.3-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 136.0.2-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 136.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 135.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 135.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 134.0.1-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 134.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 134.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox edge-community 133.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.8.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.7.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.7.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.6.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.5.2-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird edge-community 128.5.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox 3.22-community 142.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox 3.22-community 140.0.4-r1 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird 3.22-community 140.0.1-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
firefox 3.22-community 136.0.4-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable
thunderbird 3.22-community 128.11.0-r0 Patrycja Rosa <alpine@ptrcnull.me> possibly vulnerable