[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-1740Date: (C)2006-04-14   (M)2024-03-27


Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening the trusted site in a popup window, then changing the location to a malicious site.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.6
Exploit Score: 4.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: HIGH
Authentication: NONE
Confidentiality: NONE
Integrity: PARTIAL
Availability: NONE
  
Reference:
SUNALERT-102550
BID-17516
SECUNIA-19631
SECUNIA-19696
SECUNIA-19714
SECUNIA-19721
SECUNIA-19729
SECUNIA-19746
SECUNIA-19759
SECUNIA-19794
SECUNIA-19811
SECUNIA-19852
SECUNIA-19862
SECUNIA-19863
SECUNIA-19902
SECUNIA-19941
20060404-01-U
SECUNIA-21033
SECUNIA-21622
SUNALERT-228526
ADV-2006-1356
DSA-1044
DSA-1046
DSA-1051
FEDORA-2006-410
FEDORA-2006-411
FLSA:189137-1
FLSA:189137-2
GLSA-200604-12
GLSA-200604-18
HPSBUX02122
MDKSA-2006:075
MDKSA-2006:076
RHSA-2006:0328
RHSA-2006:0329
SCOSA-2006.26
SUSE-SA:2006:021
USN-271-1
USN-275-1
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm
http://www.mozilla.org/security/announce/2006/mfsa2006-12.html
https://bugzilla.mozilla.org/show_bug.cgi?id=271194
mozilla-secure-site-spoofing(25813)
oval:org.mitre.oval:def:10424
oval:org.mitre.oval:def:1811

CPE    28
cpe:/a:mozilla:thunderbird
cpe:/a:mozilla:thunderbird:1.0.5:beta
cpe:/a:mozilla:thunderbird:1.0.3
cpe:/a:mozilla:mozilla_suite:1.7.7
...
OVAL    1
oval:org.mitre.oval:def:1811

© SecPod Technologies