CVE-2009-4100

Metadata

CVE-2009-4100
9.3
net-security.org, securityfocus.com, vupen.com, addons.mozilla.org, exchange.xforce.ibmcloud.com
2009-11-29
2017-08-17 06:10

Description

Yoono extension before 6.1.1 for Firefox performs certain operations with chrome privileges, which allows user-assisted remote attackers to execute arbitrary commands and perform cross-domain scripting attacks via DOM event handlers such as onload.

Related Vulnerabilities