2 matches found
Linux Distros Unpatched Vulnerability : CVE-2007-1084
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox 2.0.0.1 and earlier does not prompt users before saving bookmarklets, which allows remote attackers to bypass the same-domain policy by tricking...
CVE-2007-1084
Affected software: Mozilla Firefox 2.0.0.1 and earlier. Vulnerability: saving a bookmarklet with a data: scheme does not prompt, enabling execution in the context of the last visited page and thereby bypassing the same-domain policy. Root cause: lack of user prompt when saving bookmarklets. Impac...