CVE-2008-4060 (retired)

Priority
Description
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before
2.0.0.17, and SeaMonkey before 1.1.12 allow remote attackers to create
documents that lack script-handling objects, and execute arbitrary code
with chrome privileges, via vectors related to (1) the
document.loadBindingDocument function and (2) XSLT.
Package
Upstream:released (2.0.0.17)
Package
Upstream:released (3.0.3)
Package
Upstream:needs-triage
Package
Priority: Low
Upstream:needs-triage
Package
Upstream:released (1.1.12)
Package
Priority: Low
Upstream:released (2.0.0.17)
Package
Upstream:needs-triage
Package
Upstream:released (1.9.0.3)
More Information

Updated: 2019-09-19 15:13:13 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)