CVE-2007-5338

Impact:
Critical
Public Date:
2007-10-18

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

Find out more about CVE-2007-5338 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux version 3 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux version 4 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux version 2.1 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux version 5 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux version 4 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux version 4 (thunderbird) RHSA-2007:0981 2007-10-19
Red Hat Enterprise Linux Desktop version 5 (thunderbird) RHSA-2007:0981 2007-10-19