| Revision Date: | 2014-10-06 | Version: | 19 |
| Title: | Mozilla Firefox before 15.0 does not properly restrict navigation to the aboutges via a crafted web site that triggers creation of a new tab and then a new window. |
| Description: | Mozilla Firefox before 15.0 does not properly restrict navigation to the about:newtab page, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted web site that triggers creation of a new tab and then a new window. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2012-3965
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Mozilla Firefox
|
| Definition Synopsis |
| Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 14.0
AND Mozilla Firefox Mainline version is greater than or equal to 1.0
|