DescriptionThe InstallTrigger.install method in Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers to execute a callback function in the context of another domain by forcing a page navigation after the install method has been called, which causes the callback to be run in the context of the new page and results in a same origin violation.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2005:045, published Thu, 11 Aug 2005 15:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:37:44 2013
CVE page last modified: Fri Oct 7 12:45:31 2022