Security Advisory

CVE-2009-2471

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-07-22 18:00:00

Last updated 2024-08-07 05:52:14

Assigner redhat

State PUBLISHED

Description

The setTimeout function in Mozilla Firefox before 3.0.12 does not properly preserve object wrapping, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted call, related to XPCNativeWrapper.

← Browse all CVEs View on cve.org ↗