The privileged "chrome" UI code in Firefox prior to 1.0.3 and Mozilla Suite prior to 1.7.7 allows remote malicious users to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 0.9.1 |
||
mozilla firefox 0.9.2 |
||
mozilla mozilla 1.4 |
||
mozilla mozilla 1.4.1 |
||
mozilla mozilla 1.6 |
||
mozilla mozilla 1.7 |
||
mozilla firefox 0.10 |
||
mozilla firefox 0.10.1 |
||
mozilla firefox 1.0 |
||
mozilla firefox 1.0.1 |
||
mozilla mozilla 1.5.1 |
||
mozilla mozilla 1.5 |
||
mozilla mozilla 1.7.2 |
||
mozilla mozilla 1.7.3 |
||
mozilla firefox 0.8 |
||
mozilla firefox 0.9 |
||
mozilla firefox 1.0.2 |
||
mozilla mozilla 1.3 |
||
mozilla mozilla 1.7.5 |
||
mozilla mozilla 1.7.6 |
||
mozilla firefox 0.9.3 |
||
mozilla mozilla 1.7.1 |