Описание
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 7.0.1+build1+nobinonly-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | not-affected | |
| maverick | not-affected | 3.6.23+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 7.0.1+build1+nobinonly-0ubuntu0.11.04.1 |
| upstream | released | 7.0 |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior.
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior.
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey b ...
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping behavior.
4.3 Medium
CVSS2