Mozilla Firefox CVE-2015-4495 Same Origin Policy Security Bypass Vulnerability
Mozilla Firefox is prone to a same-origin security-bypass vulnerability.
Attackers can exploit this issue to bypass the same-origin policy and certain access restrictions to access data, or execute arbitrary script code in the browser of an unsuspecting user in the context of another site. This could be used to steal sensitive information or launch other attacks.
This issue is fixed in:
Firefox ESR 38.1