- Home
- CVEs with nessus.description==Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems :
- CVE-2007-5947 Jesse Ruderman and Petko D. Petkov discovered that the URI handler for JAR archives allows cross-site scripting.
- CVE-2007-5959 Several crashes in the layout engine were discovered, which might allow the execution of arbitrary code.
- CVE-2007-5960 Gregory Fleischer discovered a race condition in the handling of the 'window.location' property, which might lead to cross-site request forgery.
The oldstable distribution (sarge) doesn't contain xulrunner.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top