CVE-2007-5338

2007-10-21T16:17:00
ID CVE-2007-5338
Type cve
Reporter NVD
Modified 2018-10-15T17:43:11

Description

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.