Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 does not properly clear a JavaScript reference to a frame or window, which leaves a pointer to a deleted object that allows remote attackers to execute arbitrary native code.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 1.5 (including) | 1.5 (including) |
Firefox | Mozilla | 1.5.0.1 (including) | 1.5.0.1 (including) |
Firefox | Mozilla | 1.5.0.2 (including) | 1.5.0.2 (including) |
Firefox | Mozilla | 1.5.0.3 (including) | 1.5.0.3 (including) |
Firefox | Mozilla | 1.5.0.4 (including) | 1.5.0.4 (including) |
Seamonkey | Mozilla | 1.0 (including) | 1.0 (including) |
Seamonkey | Mozilla | 1.0.1 (including) | 1.0.1 (including) |
Seamonkey | Mozilla | 1.0.2 (including) | 1.0.2 (including) |