CVE-2015-0821

Mozilla Firefox before 36.0 allows user-assisted remote attackers to read arbitrary files or execute arbitrary JavaScript code with chrome privileges via a crafted web site that is accessed with unspecified mouse and keyboard actions.

Date published : 2015-02-25

http://www.securityfocus.com/bid/72758

http://www.mozilla.org/security/announce/2015/mfsa2015-25.html