- Home
- CVEs with nessus.description==Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications. The Common Vulnerabilities
and Exposures project identifies the following problems :
- CVE-2007-5947
Jesse Ruderman and Petko D. Petkov discovered that the
URI handler for JAR archives allows cross-site
scripting.
- CVE-2007-5959
Several crashes in the layout engine were discovered,
which might allow the execution of arbitrary code.
- CVE-2007-5960
Gregory Fleischer discovered a race condition in the
handling of the 'window.location' property, which might
lead to cross-site request forgery.
The oldstable distribution (sarge) doesn't contain xulrunner.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top