Ben Turner

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 3.x before 3.0.1 Description: The issue allows remote attackers to inject arbitrary web script into a chrome document via unspecified vectors. This can be demonstrated by injection into a XUL error page, which can potentially be leveraged to execute arbitrary code. Recommendations: For Mozilla Firefox versions 3.x before 3.0.1, update to version 3.0.1 or later to resolve the issue.