Mandriva Linux Security Advisory 2012-032-1

newsbot

newsbot

RSS Feed
Mandriva Linux Security Advisory 2012-032 - Security issues were identified and fixed in Mozilla Firefox and Thunderbird. Security researchers Blair Strang and Scott Bell of Security Assessment found that when a parent window spawns and closes a child window that uses the file open dialog, a crash can be induced in shlwapi.dll on 32-bit Windows 7 systems. This crash may be potentially exploitable. Firefox prevents the dropping of javascript: links onto a frame to prevent malicious sites from tricking users into performing a cross-site scripting attacks on themselves. Security researcher Soroush Dalili reported a way to bypass this protection. Various other issues were also addressed.

Weiterlesen...
 

Ähnliche Themen

Mandriva Linux Security Advisory 2012-173

Mandriva Linux Security Advisory 2012-150-1

Mandriva Linux Security Advisory 2012-145

Mandriva Linux Security Advisory 2012-110

Mandriva Linux Security Advisory 2012-167

Zurück
Oben