Mozilla Firefox 4.x up to and including 7.0 and Thunderbird 5.0 up to and including 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote malicious users to gain privileges via a crafted web site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 4.0.1 |
||
mozilla firefox 4.0 |
||
mozilla firefox 5.0 |
||
mozilla firefox 5.0.1 |
||
mozilla firefox 6.0 |
||
mozilla firefox 6.0.2 |
||
mozilla firefox 6.0.1 |
||
mozilla firefox 7.0 |
||
mozilla thunderbird 5.0 |
||
mozilla thunderbird 6.0 |
||
mozilla thunderbird 6.0.1 |
||
mozilla thunderbird 6.0.2 |
||
mozilla thunderbird 7.0 |