CVE-2009-3986 (retired)

Priority
Description
Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before
2.0.1, allows remote attackers to execute arbitrary JavaScript with chrome
privileges by leveraging a reference to a chrome window from a content
window, related to the window.opener property.
Package
Upstream:needs-triage
Package
Upstream:released (2.0.1)
Package
Upstream:released (1.9.0.16)
Package
Upstream:needs-triage
More Information

Updated: 2019-08-23 08:36:51 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)