The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and previous versions allows malicious users to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla mozilla |
||
sco openserver 5.0.7 |