6.2 Medium
AI Score
Confidence
High
2.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
38.2%
Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks.
www.gentoo.org/security/en/glsa/glsa-200503-10.xml
www.gentoo.org/security/en/glsa/glsa-200503-30.xml
www.mozilla.org/security/announce/mfsa2005-24.html
www.redhat.com/support/errata/RHSA-2005-176.html
www.redhat.com/support/errata/RHSA-2005-384.html
bugzilla.mozilla.org/show_bug.cgi?id=277574
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100034
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11191