Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-777-1
HistoryAug 17, 2005 - 12:00 a.m.

mozilla - frame injection spoofing

2005-08-1700:00:00
Google
osv.dev
9

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

A vulnerability has been discovered in Mozilla and Mozilla Firefox
that allows remote attackers to inject arbitrary Javascript from one
page into the frameset of another site. Thunderbird is not affected
by this and Galeon will be automatically fixed as it uses Mozilla
components.

For the stable distribution (sarge) this problem has been fixed in
version 1.7.8-1sarge1.

For the unstable distribution (sid) this problem has been fixed in
version 1.7.10-1.

We recommend that you upgrade your Mozilla package.

CPENameOperatorVersion
mozillaeq2:1.7.8-1

Related

osv 2
nessus 25
debian 6
openvas 11
cve 2
ubuntucve 2
freebsd 2
redhat 3
centos 3
ubuntu 3
suse 8
slackware 1
osv
osv
mozilla-firefox - frame injection spoofing
2005-08-15 00:00:00
mozilla - several
2005-09-13 00:00:00
nessus
nessus
Debian DSA-775-1 : mozilla-firefox - frame injection spoofing
2005-08-18 00:00:00
Debian DSA-777-1 : mozilla - frame injection spoofing
2005-08-18 00:00:00
FreeBSD : Mutiple browser frame injection vulnerability (83) (deprecated)
2004-08-12 00:00:00
debian
debian
[SECURITY] [DSA 777-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-17 09:27:19
[SECURITY] [DSA 775-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-15 11:02:20
[SECURITY] [DSA 777-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-17 09:27:19
openvas
openvas
Debian Security Advisory DSA 775-1 (mozilla)
2008-01-17 00:00:00
Debian Security Advisory DSA 777-1 (mozilla)
2008-01-17 00:00:00
FreeBSD Ports: kdelibs
2008-09-04 00:00:00
cve
cve
CVE-2005-1937
2005-06-14 04:00:00
CVE-2004-0718
2004-07-27 04:00:00
ubuntucve
ubuntucve
CVE-2005-1937
2005-06-14 00:00:00
CVE-2004-0718
2004-07-27 00:00:00
freebsd
freebsd
Mutiple browser frame injection vulnerability
2004-08-11 00:00:00
firefox & mozilla -- multiple vulnerabilities
2005-07-12 00:00:00
redhat
redhat
(RHSA-2005:587) mozilla security update
2005-07-22 00:00:00
(RHSA-2005:586) firefox security update
2005-07-21 00:00:00
(RHSA-2004:421) mozilla security update
2004-08-04 00:00:00
centos
centos
devhelp, mozilla security update
2005-07-22 15:23:45
galeon, mozilla security update
2005-07-25 01:17:58
firefox security update
2005-07-21 21:28:02
ubuntu
ubuntu
Firefox vulnerabilities
2005-07-21 00:00:00
Mozilla vulnerabilities
2005-07-27 00:00:00
Ubuntu 4.10 update for Firefox vulnerabilities
2005-07-28 00:00:00
suse
suse
information leak in mozilla,MozillaFirefox,epiphany,galeon
2005-08-11 15:28:02
remote DoS condition in apache2
2004-09-06 13:51:41
remote code execution in cups
2004-09-15 14:45:26
slackware
slackware
[slackware-security] Mozilla
2004-08-10 21:17:12

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-777-1
osv2nessus25debian6openvas11cve2ubuntucve2freebsd2redhat3centos3ubuntu3suse8slackware1