Security Advisory

CVE-2013-1727

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-09-18 10:00:00

Last updated 2024-08-06 15:13:31

Assigner mozilla

State PUBLISHED

Description

Mozilla Firefox before 24.0 on Android allows attackers to bypass the Same Origin Policy, and consequently conduct cross-site scripting (XSS) attacks or obtain password or cookie information, by using a symlink in conjunction with a file: URL for a local file.

← Browse all CVEs View on cve.org ↗