5 matches found
EUVD-2008-0601
Malware in sbrugna...
Design/Logic Flaw
Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does not properly manage a delay timer used in confirmation dialogs, which might allow remote attackers to trick users into confirming an unsafe action, such as remote file execution, by using a timer to change the window focus, aka...
CVE-2008-0591
Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does not properly manage a delay timer used in confirmation dialogs, which might allow remote attackers to trick users into confirming an unsafe action, such as remote file execution, by using a timer to change the window focus, aka...
CVE-2008-0591
CVE-2008-0591 concerns Mozilla Firefox (pre-2.0.0.12) and Thunderbird (pre-2.0.0.12). The issue arises from how a delay timer protecting security-sensitive dialogs is handled; an attacker could exploit window focus changes to bypass the timer and trick a user into confirming an unsafe action (pot...
Mozilla information disclosure flaw
Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does not properly manage a delay timer used in confirmation dialogs, which might allow remote attackers to trick users into confirming an unsafe action, such as remote file execution, by using a timer to change the window focus, aka...