- Home
- CVEs with nessus.description==Several remote vulnerabilities have been discovered in the Iceweasel
web browser, an unbranded version of the Firefox browser. The Common
Vulnerabilities and Exposures project identifies the following
problems :
- CVE-2007-5947
Jesse Ruderman and Petko D. Petkov discovered that the
URI handler for JAR archives allows cross-site
scripting.
- CVE-2007-5959
Several crashes in the layout engine were discovered,
which might allow the execution of arbitrary code.
- CVE-2007-5960
Gregory Fleischer discovered a race condition in the
handling of the 'window.location' property, which might
lead to cross-site request forgery.
The Mozilla products in the oldstable distribution (sarge) are no
longer supported with security updates.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top