New Search

Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks aka the "Dialog Box Spoofing Vulnerability."

oval:org.mitre.oval:def:11016

Firefox before 1.0 and Mozilla before 1.7.5 display the secure site lock icon when a view-source: URL references a secure SSL site while an insecure page is being loaded which could facilitate phishing attacks.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Oracle Linux 4
  • Red Hat Enterprise Linux 4
  • CentOS Linux 4
  • Red Hat Enterprise Linux 3
  • CentOS Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2005-0144
Product(s):