| Revision Date: | 2005-10-12 | Version: | 3 |
| Title: | RHE3 Firefox InstallTrigger Callback Vulnerability |
| Description: | The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers to execute a callback function in the context of another domain by forcing a page navigation after the install method has been called, which causes the callback to be run in the context of the new page and results in a same origin violation. |
| Family: | unix | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2005-2263
|
| Platform(s): | Red Hat Enterprise Linux 3
| Product(s): | mozilla
|
| Definition Synopsis |
| Software section Red Hat Enterprise 3 is installed
AND mozilla RPM is earlier than 37:1.7.10-1.1.3.1
AND Configuration section
/usr/bin/mozilla is executable
|