Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27079
HistoryOct 01, 2011 - 12:00 a.m.

Mozilla Foundation Security Advisory 2011-43

2011-10-0100:00:00
vulners.com
25
JSON

Mozilla Foundation Security Advisory 2011-43

Title: loadSubScript unwraps XPCNativeWrapper scope parameter
Impact: Critical
Announced: September 27, 2011
Reporter: David Rees
Products: Firefox, SeaMonkey

Fixed in: Firefox 7.0
SeaMonkey 2.4
Description

David Rees reported that the JSSubScriptLoader (a feature used by some add-ons) was "unwrapping" XPCNativeWrappers when they were used as the scope parameter to loadSubScript(). Without the protection of the wrappers the add-on could be vulnerable to privilege escalation attacks from malicious web content. Whether any given add-on were vulnerable would depend on how the add-on used the feature and whether it interacted directly with web content, but we did find at least one vulnerable add-on and presumer there are more.

The unwrapping behavior was a change introduced during Firefox 4 development. Firefox 3.6 and earlier versions are not affected.

References

https://bugzilla.mozilla.org/show_bug.cgi?id=653926
CVE-2011-3004

Related

openvas 18
cve 2
ubuntucve 2
mozilla 1
prion 2
nessus 18
ubuntu 3
suse 1
freebsd 1
securityvulns 1
gentoo 1
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2011-43) - Linux
2021-11-11 00:00:00
Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability (MAC OS X)
2011-10-14 00:00:00
Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability
2011-10-04 00:00:00
cve
cve
CVE-2011-3004
2011-09-29 00:55:00
CVE-2011-3647
2011-11-09 11:55:00
ubuntucve
ubuntucve
CVE-2011-3004
2011-09-30 00:00:00
CVE-2011-3647
2011-11-09 00:00:00
mozilla
mozilla
loadSubScript unwraps XPCNativeWrapper scope parameter — Mozilla
2011-09-27 00:00:00
prion
prion
Design/Logic Flaw
2011-09-29 00:55:00
Design/Logic Flaw
2011-11-09 11:55:00
nessus
nessus
Ubuntu 10.04 LTS / 10.10 : firefox, xulrunner-1.9.2 vulnerabilities (USN-1251-1)
2011-11-11 00:00:00
Ubuntu 10.04 LTS / 10.10 / 11.04 : thunderbird vulnerabilities (USN-1254-1)
2011-12-23 00:00:00
Mozilla Firefox < 7.0 Multiple Vulnerabilities
2011-09-29 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2011-12-22 00:00:00
Firefox and Xulrunner vulnerabilities
2011-11-10 00:00:00
Firefox vulnerabilities
2011-09-29 00:00:00
suse
suse
seamonkey: Update to Mozilla Seamonkey 2.4 (important)
2011-09-29 15:08:19
freebsd
freebsd
Mozilla -- multiple vulnerabilities
2011-09-27 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-10-01 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for SECURITYVULNS:DOC:27079
openvas18cve2ubuntucve2mozilla1prion2nessus18ubuntu3suse1freebsd1securityvulns1gentoo1