The Plugin Finder Service (PFS) in Firefox prior to 1.0.3 allows remote malicious users to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 0.9 |
||
mozilla firefox 0.9.1 |
||
mozilla firefox 0.9.2 |
||
mozilla firefox 0.9.3 |
||
mozilla firefox 0.10.1 |
||
mozilla firefox 0.8 |
||
mozilla firefox 1.0.1 |
||
mozilla firefox 1.0.2 |
||
mozilla firefox 0.10 |
||
mozilla firefox 1.0 |