Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2015-0816
Description:Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging the ability to bypass the Same Origin Policy, as demonstrated by the resource: URL associated with PDF.js.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-0816
BugTraq ID: 73461
Debian Security Information: DSA-3211 (Google Search)
Debian Security Information: DSA-3212 (Google Search)
RedHat Security Advisories: RHSA-2015:0766
RedHat Security Advisories: RHSA-2015:0771
SuSE Security Announcement: SUSE-SU-2015:0704 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:0677 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:0892 (Google Search)
SuSE Security Announcement: openSUSE-SU-2015:1266 (Google Search)

© 1998-2021 E-Soft Inc. All rights reserved.