Mozilla products fail to properly handle the XML.prototype.hasOwnProperty() method. This vulnerability may allow a remote attacker execute arbitrary code.
For more information refer to Mozilla Foundation Security Advisory 2006-65.
A remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. The attacker could also cause the vulnerable application to crash.
Apply an update
This vulnerability was reported in Mozilla Foundation Security Advisory 2006-65. Mozilla credits shutdown for providing information concerning this issue.
This document was written by Jeff Gennari.
|Date First Published:||2006-11-08|
|Date Last Updated:||2006-12-21 18:52 UTC|