CVE-2008-1240 (retired)

Priority
Description
LiveConnect in Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9
does not properly parse the content origin for jar: URIs before sending
them to the Java plugin, which allows remote attackers to access arbitrary
ports on the local machine. NOTE: this is closely related to
CVE-2008-1195.
Package
Upstream:released (2.0.0.13)
Package
Upstream:released (1.1.9)
Package
Upstream:needs-triage
Package
Upstream:released (1.1.9)
Package
Upstream:needs-triage
More Information

Updated: 2019-08-23 08:32:41 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)