CVE-2007-3736

Priority
Untriaged
Description
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5
allows remote attackers to inject arbitrary web script "into another site's
context" via a "timing issue" involving the (1) addEventListener or (2)
setTimeout function, probably by setting events that activate after the
context has changed.
References
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:18:03 UTC (commit 5347)