Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2008-3836

Source

Mozilla Foundation Security Advisory 2008-39

Privilege escalation using feed preview page and XSS flaw

Announced

September 23, 2008

Reporter

moz_bug_r_a4

Impact

Critical

Products

Firefox

Fixed in

Firefox 2.0.0.17

Description

Mozilla security researcher moz_bug_r_a4 reported a series of vulnerabilities in feedWriter which allow scripts from page content to run with chrome privileges.

Firefox 3 is not affected by this issue

Workaround

Disable JavaScript until a version containing these fixes can be installed.

References

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Privilege escalation using feed preview page and XSS flaw

Privilege escalation using feed preview page and XSS flaw

Description

Workaround

References

Vulmon Search

About

Products

Connect