CVE-2004-0871

Mozilla does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote attackers to steal cookies and conduct unauthorized activities, aka "Cross Security Boundary Cookie Injection."
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:mozilla:mozilla:0.9.2:*:*:*:*:*:*:*

Information

Published : 2004-09-15 21:00

Updated : 2017-07-10 18:30


NVD link : CVE-2004-0871

Mitre link : CVE-2004-0871


JSON object : View

Advertisement

dedicated server usa

Products Affected

mozilla

  • mozilla