CVE-2016-9070

Summary

A maliciously crafted page loaded to the sidebar through a bookmark can reference a privileged chrome window and engage in limited JavaScript operations violating cross-origin protections. This vulnerability affects Firefox < 50.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 50affected

Weaknesses

  • Sidebar bookmark can have reference to chrome window

ADP Enrichment

CVE Program Container

Additional References

References