Lucene search
HistoryDec 14, 2009 - 5:30 p.m.
CVE-2009-4130
cve-2009-4130
visual truncation
makescriptdialogtitle
nsglobalwindow.cpp
mozilla firefox
remote attack
6.3 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
69.5%
Visual truncation vulnerability in the MakeScriptDialogTitle function in nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the origin domain name of a script via a long name.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mozilla:firefox | mozilla firefox | eq | * |
Related
prion
prion
Design/Logic Flaw
2009-12-14 17:30:00
cvelist
cvelist
CVE-2009-4130
2009-12-14 17:00:00
ubuntucve
ubuntucve
CVE-2009-4130
2009-12-14 00:00:00
openvas
openvas
Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)
2009-12-17 00:00:00
Mozilla Firefox Multiple Spoofing Vulnerabilities (Dec 2009) - Linux
2009-12-17 00:00:00
Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)
2009-12-17 00:00:00
securityvulns
securityvulns
Mozilla Firefox dialog spoofing
2009-12-09 00:00:00
Mozilla Firefox JavaScript Prompt Spoofing Weakness
2009-12-09 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2370
2024-03-12 08:35:15
6.3 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
0.003 Low
EPSS
Percentile
69.5%
Related for CVE-2009-4130