This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote Windows host contains a web browser that is affected by a
privilege escalation vulnerability.
The version of Mozilla Firefox ESR 31.x installed on the remote
Windows host is prior to 31.5.3. It is, therefore, affected by a
privilege escalation vulnerability due to a flaw within
'docshell/base/nsDocShell.cpp', which relates to SVG format content
navigation. A remote attacker can exploit this to bypass same-origin
policy protections, allowing a possible execution of arbitrary scripts
in a privileged context.
See also :
Upgrade to Firefox ESR 31.5.3 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true