Security Advisory

CVE-2007-3736

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-07-18 17:00:00

Last updated 2024-08-07 14:28:52

Assigner redhat

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another sites context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, probably by setting events that activate after the context has changed.

← Browse all CVEs View on cve.org ↗