CVE-2011-2984 (retired)

Priority
Description
Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before
3.1.12, and possibly other products does not properly handle the dropping
of a tab element, which allows remote attackers to execute arbitrary
JavaScript code with chrome privileges by establishing a content area and
registering for drop events.
Package
Upstream:released (3.6.20)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.1.12)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:released (1.9.2.20)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:not-affected
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 11:57:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)