CVE-2006-2784

Priority
Description
The PLUGINSPAGE functionality in Mozilla Firefox before 1.5.0.4 allows
remote user-assisted attackers to execute privileged code by tricking a
user into installing missing plugins and selecting the "Manual Install"
button, then using nested javascript: URLs. NOTE: the manual install
button is used for downloading software from a remote web site, so this
issue would not cross privilege boundaries if the user progresses to the
point of installing malicious software from the attacker-controlled site.
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 11:39:16 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)