Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2007-10-21T20:00:00
Updated: 2018-10-15T20:57:01
Reserved: 2007-10-10T00:00:00
Link: CVE-2007-5338
JSON object: View
NVD Information
Status : Modified
Published: 2007-10-21T20:17:00.000
Modified: 2018-10-15T21:43:11.307
Link: CVE-2007-5338
JSON object: View
Redhat Information
No data.