Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-07-12 21:00
Updated : 2017-10-10 18:30
NVD link : CVE-2005-2268
Mitre link : CVE-2005-2268
JSON object : View
CWE
Products Affected
mozilla
- firefox
- mozilla