Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to another website, a variant of CVE-2007-1092.
References
Link | Resource |
---|---|
http://marc.info/?l=full-disclosure&m=117258301222007&w=2 | Third Party Advisory |
http://marc.info/?l=full-disclosure&m=117259225402112&w=2 | Third Party Advisory |
http://osvdb.org/35913 | Broken Link |
http://www.securityfocus.com/archive/1/461437/100/0/threaded |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-03T20:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-03-03T00:00:00
Link: CVE-2007-1256
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-03T20:19:00.000
Modified: 2018-10-16T16:37:38.407
Link: CVE-2007-1256
JSON object: View
Redhat Information
No data.
CWE