Lucene search

K
cvelistMitreCVELIST:CVE-2009-3984
HistoryDec 17, 2009 - 5:00 p.m.

CVE-2009-3984

2009-12-1717:00:00
mitre
www.cve.org
9

AI Score

9.4

Confidence

High

EPSS

0.019

Percentile

88.6%

Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to spoof an SSL indicator for an http URL or a file URL by setting document.location to an https URL corresponding to a site that responds with a No Content (aka 204) status code and an empty body.

References