DescriptionFirefox before 1.0.5 allows remote attackers to steal sensitive information by opening a malicious link in the Firefox sidebar using the _search target, then injecting script into other pages via a data: URL.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:37:46 2013
CVE page last modified: Thu Dec 7 12:14:44 2023