[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

253164

 
 

909

 
 

197077

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2005-2707Date: (C)2005-09-23   (M)2024-03-27


Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: PARTIAL
Availability: NONE
  
Reference:
SECTRACK-1014954
BID-14919
BID-15495
SECUNIA-16911
SECUNIA-16917
SECUNIA-16977
SECUNIA-17014
SECUNIA-17026
SECUNIA-17042
SECUNIA-17090
SECUNIA-17149
SECUNIA-17263
SECUNIA-17284
SECUNIA-19823
ADV-2005-1824
DSA-838
DSA-866
DSA-868
FLSA-2006:168375
MDKSA-2005:169
MDKSA-2005:170
MDKSA-2005:174
RHSA-2005:785
RHSA-2005:789
RHSA-2005:791
SCOSA-2005.49
SUSE-SA:2005:058
SUSE-SA:2006:004
http://www.mozilla.org/security/announce/mfsa2005-59.html
mozilla-chrome-window-spoofing(22380)
oval:org.mitre.oval:def:11130
oval:org.mitre.oval:def:1197

CPE    12
cpe:/a:mozilla:mozilla_suite:1.7.7
cpe:/a:mozilla:mozilla_suite:1.7.8
cpe:/a:mozilla:mozilla_suite:1.7.6
cpe:/a:mozilla:mozilla_suite
...
OVAL    1
oval:org.mitre.oval:def:1197

© SecPod Technologies