Mozilla Firefox Drag and Drop Handling Same Origin Policy Bypass Vulnerability

Last Update Date: 6 Jan 2012 10:37 Release Date: 6 Jan 2012 5736 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Browsers

TYPE: Browsers

A vulnerability has been identified in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions.

The vulnerability is caused due to an error when handling drag and drop events and can be exploited to bypass the same origin policy and e.g. execute script code in the context of another domain.

Impact

  • Security Restriction Bypass

System / Technologies affected

  • Mozilla Firefox 9.x
     

Solutions

  • Do not perform suspicious actions on untrusted web sites.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

OpenSSL Multiple Vulnerabilities

5 Jan 2012 5749 Views

Next

FFmpeg Multiple Vulnerabilities

9 Jan 2012 5553 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY