CVE-2007-0778 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-0778 Interim 1 5 2023-12-09T02:15:51Z current 2021-05-30T12:37:55Z 2023-12-09T02:15:51Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-0778 The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 can generate hash collisions that cause page data to be appended to the wrong page cache, which allows remote attackers to obtain sensitive information or enable further attack vectors when the target page is reloaded from the cache. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/S32CD3CP3UN6UJWY7ANEKAS6GVBYXHU2/#S32CD3CP3UN6UJWY7ANEKAS6GVBYXHU2 E-Mail link for SUSE-SA:2007:019 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GSACUWXOTYI2HT5IHOBIDS6RBK2VLAFE/#GSACUWXOTYI2HT5IHOBIDS6RBK2VLAFE E-Mail link for SUSE-SA:2007:022 https://www.suse.com/support/security/rating/ SUSE Security Ratings The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 can generate hash collisions that cause page data to be appended to the wrong page cache, which allows remote attackers to obtain sensitive information or enable further attack vectors when the target page is reloaded from the cache. CVE-2007-0778 moderate 5.4 AV:N/AC:H/Au:N/C:C/I:N/A:N