Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS before 2.2 allows remote attackers to bypass the Same Origin Policy, and read arbitrary files or gain privileges, via vectors involving crafted JavaScript code and a native setter, as exploited in the wild in August 2015.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Mozilla产品PDF阅读器安全漏洞
Vulnerability Description
Mozilla Firefox、Firefox ESR和Firefox OS都是由美国Mozilla基金会开发。Firefox是一款开源Web浏览器;Firefox ESR是Firefox的一个延长支持版本;Firefox OS是一套基于Linux内核并应用于智能手机和平板电脑中的移动操作系统。 多款Mozilla产品中的PDF阅读器存在安全漏洞。远程攻击者可借助特制的JavaScript代码和本机调节器利用该漏洞绕过同源策略,读取任意文件或获取权限。以下产品及版本受到影响:Mozilla Firefox
CVSS Information
N/A
Vulnerability Type
N/A