Security Advisory

CVE-2015-0818

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-03-24 00:00:00

Last updated 2024-08-06 04:26:11

Assigner mozilla

State PUBLISHED

Description

Mozilla Firefox before 36.0.4, Firefox ESR 31.x before 31.5.3, and SeaMonkey before 2.33.1 allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation.

← Browse all CVEs View on cve.org ↗