CVE-2012-0958

2012-12-26T17:55:02
ID CVE-2012-0958
Type cve
Reporter NVD
Modified 2013-01-11T00:00:00

Description

content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted webpage.