CVE-2004-0905

2004-09-14T04:00:00
ID CVE-2004-0905
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:29:00

Description

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.