New Search

Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14 and SeaMonkey before 2.0.12 does not properly handle certain recursive eval calls which makes it easier for remote attackers to force a user to respond positively to a dialog question as demonstrated by a question about granting privileges.

oval:org.mitre.oval:def:14211

Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14 and SeaMonkey before 2.0.12 does not properly handle certain recursive eval calls which makes it easier for remote attackers to force a user to respond positively to a dialog question as demonstrated by a question about granting privileges.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows 7
  • Microsoft Windows 2000
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2003
  • Microsoft Windows Vista
Class:
vulnerability
Reference(s):
  • CVE-2011-0051
Product(s):
  • Mozilla Firefox
  • Mozilla Seamonkey