Google Caja JavaScript Parsers Remote Arbitrary Code Execution Vulnerability

Google Caja is prone to a remote arbitrary code-execution vulnerability.

Remote attackers can exploit this issue to execute arbitrary code within the context of the user running the affected application.

Google Caja r5631 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus