Описание
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 29.0+build1-0ubuntu0.14.04.2 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [29.0+build1-0ubuntu0.14.04.2]] |
| lucid | ignored | end of life |
| precise | released | 29.0+build1-0ubuntu0.12.04.2 |
| quantal | released | 29.0+build1-0ubuntu0.12.10.3 |
| saucy | released | 29.0+build1-0ubuntu0.13.10.3 |
| trusty | released | 29.0+build1-0ubuntu0.14.04.2 |
| trusty/esm | DNE | trusty was released [29.0+build1-0ubuntu0.14.04.2] |
| upstream | released | 29.0 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaM ...
The XrayWrapper implementation in Mozilla Firefox before 29.0 and SeaMonkey before 2.26 allows user-assisted remote attackers to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM methods on the unwrapped objects.
Уязвимость программного обеспечения SeaMonkey, позволяющая удаленному злоумышленнику нарушить конфиденциальность и целостность защищаемой информации
EPSS
6.8 Medium
CVSS2