Rapid7 Vulnerability & Exploit Database

Mozilla Chrome Window Spoofing Vulnerability

Back to Search

Mozilla Chrome Window Spoofing Vulnerability

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

09/23/2005

Created

07/25/2018

Added

10/03/2005

Modified

02/13/2015

Description

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks.

Solution(s)

mozilla-firefox-upgrade-1_7_12

References

https://attackerkb.com/topics/cve-2005-2707
14919
15495
CVE - 2005-2707
DSA-838
DSA-866
DSA-868
OVAL11130
OVAL1197
RHSA-2005:785
RHSA-2005:789
RHSA-2005:791
SUSE-SA:2005:058
SUSE-SA:2006:004
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://www.frsirt.com/english/advisories/2005/1824
http://www.mandriva.com/security/advisories?name=MDKSA-2005:169
http://www.mandriva.com/security/advisories?name=MDKSA-2005:170
http://www.mandriva.com/security/advisories?name=MDKSA-2005:174
http://www.mozilla.org/security/announce/mfsa2005-58.html
http://www.mozilla.org/security/announce/mfsa2005-59.html
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00004.html
22380

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Mozilla Chrome Window Spoofing Vulnerability