Total vulnerabilities in the database
Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not properly implement read restrictions for CANVAS elements, which allows remote attackers to obtain sensitive cross-origin information via vectors involving reference retention and node deletion.
Software | From | Fixed in |
---|---|---|
mozilla / firefox | 3.6.2 | 3.6.2.x |
mozilla / firefox | 3.6.3 | 3.6.3.x |
mozilla / thunderbird | - | 3.1.x |
mozilla / firefox | - | 3.6.6.x |
mozilla / firefox | 3.6.4 | 3.6.4.x |
mozilla / firefox | 3.6 | 3.6.x |