Firefox, Thunderbird & SeaMonkeyPost your questions about Mozilla based products (Firefox, Thunderbird & SeaMonkey) here.
Mission Statement
WindowsBBS is an online community dedicated to easily accessible technical support for those using Microsoft operating systems and other Windows software.
Our goal is to become the leading resource for computer users that require assistance with their day-to-day computer usage, including full support for networking PC's, virus & malware removal, system upgrades and general support questions.
DESCRIPTION:
Fukumori has reported a vulnerability in the Sage extension for
Firefox, which can be exploited by malicious people to conduct script
insertion attacks.
The vulnerability is caused due to an input validation error in the
processing of certain tags in RSS feeds. This can e.g. be exploited
to insert and execute arbitrary HTML and script code in a local
context by tricking a user into adding a malicious feed and then
viewing its contents.
The vulnerability is reported in version 1.3.9. Prior versions may
also be affected.
