CVE-2004-1160

2005-01-10T00:00:00
ID CVE-2004-1160
Type cve
Reporter NVD
Modified 2008-09-05T16:40:33

Description

Netscape 7.x to 7.2, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.