Security Advisory

CVE-2011-2984

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-08-18 18:00:00

Last updated 2024-08-06 23:22:25

Assigner mitre

State PUBLISHED

Description

Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other products does not properly handle the dropping of a tab element, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by establishing a content area and registering for drop events.

← Browse all CVEs View on cve.org ↗