Mozilla Firefox and Thunderbird CVE-2013-1692 Cross-Site Request Forgery Vulnerability

Mozilla Firefox and Thunderbird are prone to a cross-site request-forgery vulnerability.

Exploiting this issue may allow a remote attacker to perform certain unauthorized administrative actions and gain access to the affected application. Other attacks are also possible.

Note: This issue was previously discussed in BID 60762 (Mozilla Firefox/Thunderbird MFSA 2013-49 through -62 Multiple Vulnerabilities), but has been moved to its own record for better documentation.

This issue is fixed in:

Firefox 22.0
Firefox ESR 17.0.7
Thunderbird 17.0.7
Thunderbird ESR 17.0.7


 

Privacy Statement
Copyright 2010, SecurityFocus