Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2015-0802
Description:Mozilla Firefox before 37.0 relies on docshell type information instead of page principal information for Window.webidl access control, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via certain content navigation that leverages the reachability of a privileged window with an unintended persistence of access to restricted internal methods.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-0802
https://www.exploit-db.com/exploits/37958/
https://security.gentoo.org/glsa/201512-10
http://www.securitytracker.com/id/1031996
SuSE Security Announcement: openSUSE-SU-2015:0677 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00003.html
http://www.ubuntu.com/usn/USN-2550-1




© 1998-2024 E-Soft Inc. All rights reserved.