Design/Logic Flaw

2015-08-0800:59:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

0.89 High

EPSS

Percentile

98.8%

JSON

The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x before 38.1.1, and Firefox OS before 2.2 allows remote attackers to bypass the Same Origin Policy, and read arbitrary files or gain privileges, via vectors involving crafted JavaScript code and a native setter, as exploited in the wild in August 2015.

CPENameOperatorVersion
ubuntu_linuxeq12.04
ubuntu_linuxeq14.04
ubuntu_linuxeq15.04
firefoxle39.0
firefox_esreq38.0
firefox_esreq38.1.0
firefox_esreq38.0.5
firefox_esreq38.0.1
firefox_osle2.1.0
suse_linux_enterprise_desktopeq12.0

Name	Operator	Version
ubuntu_linux	eq	12.04
ubuntu_linux	eq	14.04
ubuntu_linux	eq	15.04
firefox	le	39.0
firefox_esr	eq	38.0
firefox_esr	eq	38.1.0
firefox_esr	eq	38.0.5
firefox_esr	eq	38.0.1
firefox_os	le	2.1.0
suse_linux_enterprise_desktop	eq	12.0