Vulnerability Details

Mozilla Firefox Multiple Vulnerability July-08 (Windows)

Published: 2008-10-06 11:07:14
CVE Author: NIST National Vulnerability Database

CVSS Base Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact:
Successful exploitation could result in remote arbitrary code execution, spoofing attacks, sensitive information disclosure, and JavaScript code can be executed with the privileges of JAR's signer.

Affected Versions:
Firefox version prior to 2.0.0.15 on Windows.

Technical Details:
Issues in browser are due to, - multiple errors in the layout and JavaScript engines that can corrupt memory. - error while handling unprivileged XUL documents that can be exploited to load chrome scripts from a fastload file via