DescriptionMozilla Firefox before 220.127.116.11, Thunderbird before 18.104.22.168, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2006:048, published Wed, 16 Aug 2006 17:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 04:06:43 2013
CVE page last modified: Fri Oct 7 12:45:34 2022