Chrome Object Wrapper (COW) bypass through changing prototype

description-logoDescription

Security researcher Mariusz Mlynski reported that it is possible to change the prototype of an object and bypass Chrome Object Wrappers (COW) to gain access to chrome privileged functions. This could allow for arbitrary code execution.

affected-products-logoAffected Applications

Thunderbird
Thunderbird ESR

CVE References

CVE-2013-0757