Mozilla Firefox before 24.0 on Android allows attackers to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2013-09-18T10:00:00
Updated: 2013-10-04T09:00:00
Reserved: 2013-02-13T00:00:00
Link: CVE-2013-1727
JSON object: View
NVD Information
Status : Modified
Published: 2013-09-18T10:08:24.507
Modified: 2013-10-03T03:38:56.617
Link: CVE-2013-1727
JSON object: View
Redhat Information
No data.
CWE