[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252097

 
 

909

 
 

196747

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0764Date: (C)2004-08-18   (M)2023-12-22


Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to hijack the user interface via the "chrome" flag and XML User Interface Language (XUL) files.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
BID-10832
SECUNIA-12188
BID-15495
FLSA:2089
RHSA-2004:421
SCOSA-2005.49
SUSE-SA:2004:036
VU#262350
http://bugzilla.mozilla.org/show_bug.cgi?id=244965
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7
mozilla-user-interface-spoofing(16837)
oval:org.mitre.oval:def:2418
oval:org.mitre.oval:def:9419

CPE    3
cpe:/a:mozilla:thunderbird
cpe:/a:mozilla:firefox
cpe:/a:mozilla:mozilla

© SecPod Technologies