4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.205 Low
EPSS
Percentile
96.3%
moz_bug_r_a4 discovered that .valueOf.call() and .valueOf.apply() when called with no arguments were returning the Object class prototype rather than the caller’s global window object. When called on a reachable property of another window this provides a hook to get around the same-origin protection, allowing an attacker to inject script into another window.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 1.0.8 | |
firefox | lt | 1.5 | |
mozilla suite | lt | 1.7.13 | |
seamonkey | lt | 1 | |
thunderbird | lt | 1.0.8 | |
thunderbird | lt | 1.5 |