DescriptionMozilla Firefox before 220.127.116.11, Thunderbird before 18.104.22.168, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
- SUSE-SA:2006:048, published Wed, 16 Aug 2006 17:00:00 +0000