Bugzilla – Bug 862348
VUL-0: CVE-2014-1479: Firefox/Thunderbird/Seamonkey: Clone protected content with XBL scopes
Last modified: 2014-02-10 10:44:16 UTC
Security researcher Cody Crews reported a method to bypass System Only Wrappers (SOW) by using XML Binding Language (XBL) content scopes to clone protected XUL elements. This could be used to clone anonymous nodes, making trusted XUL content web accessible.
bugbot adjusting priority
problem is covered with new Firefox version
*** This bug has been marked as a duplicate of bug 861847 ***