Mozilla SeaMonkey Scriptable Plugin Content Security Bypass Vulnerability

Bugtraq ID:	38830
Class:	Design Error
CVE:	CVE-2009-3385
Remote:	Yes
Local:	No
Published:	Mar 16 2010 12:00AM
Updated:	Jun 15 2010 04:39PM
Credit:	Georgi Guninski
Vulnerable:	S.u.S.E. openSUSE 11.1 S.u.S.E. openSUSE 11.0 Red Hat Fedora 11 Mozilla SeaMonkey 1.1.18 Mozilla SeaMonkey 1.1.17 Mozilla SeaMonkey 1.1.16 Mozilla SeaMonkey 1.1.15 Mozilla SeaMonkey 1.1.14 Mozilla SeaMonkey 1.1.13 Mozilla SeaMonkey 1.1.12 Mozilla SeaMonkey 1.1.11 Mozilla SeaMonkey 1.1.10 Mozilla SeaMonkey 1.1.9 Mozilla SeaMonkey 1.1.8 Mozilla SeaMonkey 1.1.7 Mozilla SeaMonkey 1.1.6 Mozilla SeaMonkey 1.1.5 Mozilla SeaMonkey 1.1.4 Mozilla SeaMonkey 1.1.3 Mozilla SeaMonkey 1.1.2 Mozilla SeaMonkey 1.1.1

Not Vulnerable:	Mozilla SeaMonkey 2.0.3 Mozilla SeaMonkey 2.0.2 Mozilla SeaMonkey 2.0.1 Mozilla SeaMonkey 1.1.19 Mozilla SeaMonkey 2.0