Red Hat Customer Portal

Skip to main content

CVE-2007-5338

Impact:
Critical
Public Date:
2007-10-18

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.

Find out more about CVE-2007-5338 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2007:0981 2007-10-19
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2007:0981 2007-10-19
Red Hat Enterprise Linux 4 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux 5 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2007:0980 2007-10-19

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) thunderbird 1.5.0.12-5.el5 Fixed