Mozilla Firefox before 7.0 and SeaMonkey before 2.4 do not properly restrict availability of motion data events, which makes it easier for remote attackers to read keystrokes by leveraging JavaScript code running in a background tab.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-09-29T00:00:00
Updated: 2024-08-06T23:46:03.279Z
Reserved: 2011-09-28T00:00:00
Link: CVE-2011-3866
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2011-09-29T00:55:03.013
Modified: 2018-11-29T16:02:52.130
Link: CVE-2011-3866
Redhat
No data.