Mozilla Firefox 3.6.x prior to 3.6.7 and Thunderbird 3.1.x prior to 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper (aka SJOW) wrapper, which allows remote malicious users to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object from the chrome scope."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 3.6.1 |
||
mozilla firefox 3.6.2 |
||
mozilla firefox 3.6.6 |
||
mozilla firefox 3.6.3 |
||
mozilla firefox 3.6.4 |
||
mozilla thunderbird 3.1 |