New Search

Mozilla Seamonkey XSS and arbitrary injection Vulnerabilities

oval:org.mitre.oval:def:6173

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9 Thunderbird and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets as exploited in the wild by a March 2009 eBay listing.

Family:
windows
Status:
DEPRECATED
Platform(s):
  • Microsoft Windows Vista
  • Microsoft Windows Server 2003
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2009-1308
Product(s):
  • Mozilla Seamonkey