Lucene search

K
cve[email protected]CVE-2006-1740
HistoryApr 14, 2006 - 10:02 a.m.

CVE-2006-1740

2006-04-1410:02:00
NVD-CWE-Other
web.nvd.nist.gov
37
cve-2006-1740
mozilla
firefox
mozilla suite
seamonkey
remote attackers
spoofing
secure site
vulnerability

6 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.123 Low

EPSS

Percentile

95.3%

Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening the trusted site in a popup window, then changing the location to a malicious site.

References

6 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.123 Low

EPSS

Percentile

95.3%