CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
77.6%
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.
Vendor | Product | Version | CPE |
---|---|---|---|
mozilla | firefox | * | cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* |
mozilla | firefox | 1.0 | cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:* |
mozilla | firefox | 1.0.1 | cpe:2.3:a:mozilla:firefox:1.0.1:*:*:*:*:*:*:* |
mozilla | firefox | 1.0.2 | cpe:2.3:a:mozilla:firefox:1.0.2:*:*:*:*:*:*:* |
mozilla | firefox | 1.0.3 | cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:* |
mozilla | firefox | 1.0.4 | cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:* |
mozilla | firefox | 1.0.5 | cpe:2.3:a:mozilla:firefox:1.0.5:*:*:*:*:*:*:* |
mozilla | mozilla_suite | * | cpe:2.3:a:mozilla:mozilla_suite:*:*:*:*:*:*:*:* |
mozilla | mozilla_suite | 1.7.6 | cpe:2.3:a:mozilla:mozilla_suite:1.7.6:*:*:*:*:*:*:* |
mozilla | mozilla_suite | 1.7.7 | cpe:2.3:a:mozilla:mozilla_suite:1.7.7:*:*:*:*:*:*:* |
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
secunia.com/advisories/16911
secunia.com/advisories/16917
secunia.com/advisories/16977
secunia.com/advisories/17014
secunia.com/advisories/17026
secunia.com/advisories/17042
secunia.com/advisories/17090
secunia.com/advisories/17149
secunia.com/advisories/17263
secunia.com/advisories/17284
secunia.com/advisories/19823
securitytracker.com/id?1014954
www.debian.org/security/2005/dsa-838
www.debian.org/security/2005/dsa-866
www.debian.org/security/2005/dsa-868
www.mandriva.com/security/advisories?name=MDKSA-2005:169
www.mandriva.com/security/advisories?name=MDKSA-2005:170
www.mandriva.com/security/advisories?name=MDKSA-2005:174
www.mozilla.org/security/announce/mfsa2005-59.html
www.novell.com/linux/security/advisories/2005_58_mozilla.html
www.novell.com/linux/security/advisories/2006_04_25.html
www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00004.html
www.redhat.com/support/errata/RHSA-2005-785.html
www.redhat.com/support/errata/RHSA-2005-789.html
www.redhat.com/support/errata/RHSA-2005-791.html
www.securityfocus.com/bid/14919
www.securityfocus.com/bid/15495
www.vupen.com/english/advisories/2005/1824
exchange.xforce.ibmcloud.com/vulnerabilities/22380
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11130
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1197