Mozilla Firefox prior to 31.0 and Thunderbird prior to 31.0 do not properly implement the sandbox attribute of the IFRAME element, which allows remote malicious users to bypass intended restrictions on same-origin content via a crafted web site in conjunction with a redirect.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla thunderbird 24.6 |
||
mozilla thunderbird 24.5 |
||
mozilla thunderbird 24.4 |
||
mozilla firefox |
||
mozilla thunderbird 24.1 |
||
mozilla thunderbird 24.1.1 |
||
mozilla thunderbird 24.0 |
||
mozilla thunderbird 24.0.1 |
||
mozilla thunderbird |
||
mozilla thunderbird 24.2 |
||
mozilla thunderbird 24.3 |