Fedora Account System
Red Hat Associate
Red Hat Customer
Privilege escalation through Print Preview Georgi Guninski reported two variants of using scripts in an XBL control to gain chrome privileges when the page is viewed under "Print Preview". This vulnerability exists even if web-content JavaScript is turned off Workaround Do not use Print Preview until you upgrade to a fixed version. References [1]https://bugzilla.mozilla.org/show_bug.cgi?id=325991 [2]https://bugzilla.mozilla.org/show_bug.cgi?id=328469 This issue also affects FC4
Lifting embargo
This bug was fixed for FC4 in Fedora Update FEDORA-2006-488 <http://www.redhat.com/archives/fedora-package-announce/2006-May/msg00019.html>. This bug was fixed for FC5 in Fedora Update FEDORA-2006-487 <http://www.redhat.com/archives/fedora-package-announce/2006-May/msg00018.html>.