Mozilla : Security Vulnerabilities, CVEs, Published In October 2003
The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.
Max CVSS
9.8
EPSS Score
1.17%
Published
2003-10-07
Updated
2024-01-25
1 vulnerabilities found