Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possibly execute arbitrary code via a crafted request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published: 2012-11-24T20:00:00

Updated: 2024-08-06T18:45:26.112Z

Reserved: 2012-02-01T00:00:00

Link: CVE-2012-0960

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-11-24T20:55:01.820

Modified: 2024-11-21T01:36:03.130

Link: CVE-2012-0960

cve-icon Redhat

No data.