Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-10-21 20:17
Updated : 2018-10-15 21:43
NVD link : CVE-2007-5338
Mitre link : CVE-2007-5338
CVE.ORG link : CVE-2007-5338
JSON object : View
Products Affected
mozilla
- seamonkey
- firefox