Vulnerabilities

CVE-2011-2984

by Fred · 18/08/2011

Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other products does not properly handle the dropping of a tab element, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by establishing a content area and registering for drop events.

Date published : 2011-08-18

http://www.mozilla.org/security/announce/2011/mfsa2011-30.html

https://bugzilla.mozilla.org/show_bug.cgi?id=572129

Similar

Tags: Cybersecurity Alert