Clickjacking vulnerabilities in Mozilla Firefox via a Flash object and crafted JavaScript code - MSFA-2015-35 (Mac OS X)ID: oval:org.secpod.oval:def:24011 | Date: (C)2015-04-07 (M)2023-11-18 |
Class: PATCH | Family: macos |
The host is missing a critical security update according to Mozilla advisory, MSFA-2015-35. The update is required to clickjacking vulnerabilities. The flaws are present in the application, which fails to handle a Flash object in conjunction with DIV elements associated with layered presentation and crafted JavaScript code that interacts with an IMG element. Successful exploitation could allow attackers to conduct clickjacking attacks.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |