CVE-2011-2486

Name of the Vulnerable Software and Affected Versions nspluginwrapper versions prior to 1.4.4

Description The issue prevents Firefox plugins from determining if they should run in Private Browsing mode, allowing remote attackers to bypass intended access restrictions. This could be demonstrated using Flash, where the NPNVprivateModeBool variable settings are not properly provided.

Recommendations For versions prior to 1.4.4, update to version 1.4.4 or later to resolve the issue. As a temporary workaround, consider restricting access to plugins that rely on Private Browsing mode until the update is applied.