5 matches found
SUSE CVE-2010-2762
The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper aka SJOW implementation in Mozilla Firefox 3.6.x before 3.6.9 and Thunderbird 3.1.x before 3.1.3 does not properly restrict objects at the end of scope chains, which allows remote attackers to execute arbitrary JavaScript code with chrom...
Mozilla Products 'SJOW' Arbitrary Code Execution Vulnerability (MFSA2010-59) - Windows
Mozilla Firefox/Thunderbird are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-2762
CVE-2010-2762 affects Mozilla Firefox 3.6.x (prior to 3.6.9) and Thunderbird 3.1.x (prior to 3.1.3). The issue lies in the SafeJSObjectWrapper (SJOW) implementation: the XPCSafeJSObjectWrapper class does not properly restrict objects at the end of scope chains, enabling remote attackers to execut...
firefox, nspr, nss, xulrunner security update
CentOS Errata and Security Advisory CESA-2010:0681 Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVS...
Critical: Red Hat Security Advisory: firefox security update
Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings...