CVE-2004-0867

2004-12-23T00:00:00
ID CVE-2004-0867
Type cve
Reporter NVD
Modified 2017-07-10T21:30:32

Description

Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. NOTE: it was later reported that 2.x is also affected.