Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The mail component in Mozilla SeaMonkey before 1.1.19 does not properly restrict execution of scriptable plugin content, which allows user-assisted remote attackers to obtain sensitive information via crafted content in an IFRAME element in an HTML e-mail message, as demonstrated by a Flash object that sends arbitrary local files during a reply or forward operation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla SeaMonkey mail组件权限许可和访问控制漏洞
Vulnerability Description
Mozilla SeaMonkey是Mozilla发布的浏览器和邮件新闻组客户端产品。 Mozilla SeaMonkey 的邮件组件没有严格对脚本插件内容访问进行限制,受骗用户可以利用HTML e-mail信息的IFRAME元素的特制内容,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A