CVE-2008-5504

Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run arbitrary JavaScript with chrome privileges via vectors related to the feed preview, a different vulnerability than CVE-2008-3836.

Date published : 2008-12-17

http://www.securityfocus.com/bid/32882

http://www.mozilla.org/security/announce/2008/mfsa2008-62.html