CVE-2025-15032

Dia for macOS before 1.9.0 is vulnerable to spoofing of the window title due to a missing about:blank indicator in custom-sized new windows. The root cause is the absence of a visual cue (about:blank indicator) that can mislead users about the current site. Affected product: Dia (macOS). Impact: ...

CVE-1999-0469

Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client...

RHEL 8 : thunderbird (RHSA-2022:0847)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0847 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.7.0. Security Fixes: Mozilla:...

RHEL 8 : firefox (RHSA-2022:0817)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0817 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

Mozilla: Browser window spoof using fullscreen mode

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification...

Window Browser Spoofing

firefox is vulnerable to browser window spoofing. The vulnerability exists when resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification...

CVE-2022-22746

The Mozilla Foundation Security Advisory describes this flaw as: A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed. This bug only affects Thunderbird for Windows. Other operating systems are unaffected...

jigbrowser+ for Android vulnerable to address bar spoofing

Overview jigbrowser+ for Android contains an issue when opening a new window, which may result in the address bar being spoofed. Keita Haga of keitahaga.com reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact Th...

Debian Security Advisory DSA 838-1 (mozilla-firefox)

The remote host is missing an update to mozilla-firefox announced via advisory DSA 838-1. Multiple security vulnerabilities have been identified in the mozilla-firefox web browser. These vulnerabilities could allow an attacker to execute code on the victim's machine via specially crafted network...

security flaw

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks...

Debian DSA-838-1 : mozilla-firefox - multiple vulnerabilities

Multiple security vulnerabilities have been identified in the mozilla-firefox web browser. These vulnerabilities could allow an attacker to execute code on the victim's machine via specially crafted network resources. - CAN-2005-2701 Heap overrun in XBM image processing - CAN-2005-2702 Denial of...

[SECURITY] [DSA 838-1] New mozilla-firefox packages fox multiple vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 838-1 [email protected] http://www.debian.org/security/ Michael Stone October 2nd, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 838-1] New mozilla-firefox packages fox multiple vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 838-1 [email protected] http://www.debian.org/security/ Michael Stone October 2nd, 2005 http://www.debian.org/security/faq -...

DSA-838-1 mozilla-firefox - multiple vulnerabilities

Bulletin has no description...

Firefox 1.0.7 / Mozilla Suite 1.7.12 Vulnerability Fixes — Mozilla

Fixes for multiple vulnerabilities with an overall severity of "critical" have been released in Mozilla Firefox 1.0.7 and the Mozilla Suite 1.7.12 Heap overrun in XBM image processing Critical Crash on "zero-width non-joiner" sequence Critical XMLHttpRequest header spoofing Moderate Object spoofi...

firefox & mozilla -- multiple vulnerabilities

A Mozilla Foundation Security Advisory reports of multiple issues: Heap overrun in XBM image processing jackerror reports that an improperly terminated XBM image ending with space characters instead of the expected end tag can lead to a heap buffer overrun. This appears to be exploitable to insta...

Microsoft Internet Explorer 6 - Pop-up Window Title Bar Spoofing

source: https://www.securityfocus.com/bid/12602/info Internet Explorer is reported prone to a pop-up window title bar spoofing weakness. The weakness is reported to exist due to a flaw that manifests in script-initiated pop-up windows. This issue may be leveraged by an attacker to display false U...

CVE-1999-0469

CVE-1999-0469 affects Internet Explorer 5.0. The vulnerability is a window spoofing flaw that allows a remote attacker to spoof a legitimate website and capture information from the client. Per the sources, exploitation is remote and the issue has a CVSSv2 base score of 5.0 (Medium) with network ...

CVE-1999-0469

Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client...

netscape.msredir.txt

The first version of this document was created by Georgi Guninski, i would like to report that this bug also works on netscape Tested 4.7. I added the document with needed changes for netscape. Disclaimer: The opinions expressed in this advisory and program are my own and not of any company. The...