Mozilla Products Privilege Escalation Vulnerabily (MAC OS X)

The host is installed with Mozilla firefox/thunderbird and is prone to privilege escalation vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsprivescvulnmacosx.nasl 7006 2017-08-25 11:51:20Z teissa $ Mozilla Products Privilege Escalation Vulnerability MAC OS X Authors: Madhuri D...

Mozilla Products Privilege Escalation Vulnerability (MFSA2011-46) - Mac OS X

Mozilla Firefox/Thunderbird is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Products Privilege Escalation Vulnerabily (Windows)

The host is installed with Mozilla firefox/thunderbird and is prone to privilege escalation vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsprivescvulnwin.nasl 7029 2017-08-31 11:51:40Z teissa $ Mozilla Products Privilege Escalation Vulnerability Windows Authors: Madhuri D Copyright:...

CVE-2011-3647

The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain...

Design/Logic Flaw

The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain...

CVE-2011-3647

The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain...

CVE-2011-3647

CVE-2011-3647 affects Mozilla Firefox pre-3.6.24 and Thunderbird pre-3.1.6. The vulnerability arises from how the JSSubScriptLoader handles XPCNativeWrappers when calling loadSubScript in add-ons, enabling privilege escalation via a crafted web site that exploits unwrapping behavior. Related to C...

CVE-2011-3647

The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain...

Firefox 3.6.x < 3.6.24 Multiple Vulnerabilities

The installed version of Firefox 3.6.x is earlier than 3.6.24 and is potentially affected by the following vulnerabilities: - There is an error within the JSSubScriptLoader that incorrectly unwraps 'XPCNativeWrappers'. By tricking a user into installing a malicious plug-in, an attacker could...

Thunderbird 3.1 < 3.1.16 Multiple Vulnerabilities (Mac OS X)

The installed version of Thunderbird 3.1 is earlier than 3.1.16. Such versions are potentially affected by the following security issues : - There is an error within the JSSubScriptLoader that incorrectly unwraps 'XPCNativeWrappers'. By tricking a user into installing a malicious plug-in, an...

Mozilla Thunderbird 3.1.x < 3.1.16 Multiple Vulnerabilities

The installed version of Thunderbird 3.1.x is earlier than 3.1.16 and is potentially affected by the following vulnerabilities: - There is an error within the JSSubScriptLoader that incorrectly unwraps 'XPCNativeWrappers'. By tricking a user into installing a malicious plug-in, an attacker could...

CVE-2011-3004

The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping...

CVE-2011-3004

The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping...

Design/Logic Flaw

The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping...

CVE-2011-3004

The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted web site that leverages certain unwrapping...

CVE-2011-3004

The CVE-2011-3004 issue affects Mozilla Firefox 4.x–6 and SeaMonkey before 2.4, where the JSSubScriptLoader fails to properly handle XPCNativeWrappers during loadSubScript calls. This weakens the add-on boundary, allowing a crafted web site to exploit unwrapping behavior and escalate privileges. ...

SeaMonkey < 2.4.0 Multiple Vulnerabilities

The installed version of SeaMonkey is earlier than 2.4.0. Such versions are potentially affected by the following security issues : - If an attacker could trick a user into holding down the 'Enter' key, via a malicious game, for example, a malicious application or extension could be downloaded an...

loadSubScript unwraps XPCNativeWrapper scope parameter — Mozilla

David Rees reported that the JSSubScriptLoader a feature used by some add-ons was "unwrapping" XPCNativeWrappers when they were used as the scope parameter to loadSubScript. Without the protection of the wrappers the add-on could be vulnerable to privilege escalation attacks from malicious web...