CVE-2015-0816 PoC — 多款Mozilla产品权限许可和访问控制漏洞

Source

https://github.com/Afudadi/Firefox-35-37-Exploit

Associated Vulnerability

Title:多款Mozilla产品权限许可和访问控制漏洞 (CVE-2015-0816)
Description:Mozilla Firefox、Firefox ESR和Thunderbird都是由美国Mozilla基金会开发的产品。Firefox是一款开源Web浏览器，Firefox ESR是Firefox的一个延长支持版本。Thunderbird是从Mozilla Application Suite中独立出来的一套电子邮件客户端软件。多款Mozilla产品中存在安全漏洞，该漏洞源于程序没有正确限制resource: URL。远程攻击者可通过绕过同源策略（Same Origin Policy）利用该漏洞以‘chr

Description

CVE-2015-0816 + CVE-2015-0802

Readme

# Firefox-35-37-Exploit

CVE-2015-0816 + CVE-2015-0802 for firefox

File Snapshot


 [4.0K]  /data/pocs/e7dfc7986578bcb381dc861a3f4646383d4be326
├── [ 14K]  PoC.html
└── [  67]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!