New Search

Mozilla Secure-site Spoof (requires security warning dialog)

oval:org.mitre.oval:def:1811

Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8 Mozilla Suite before 1.7.13 and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening the trusted site in a popup window then changing the location to a malicious site.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2006-1740
Product(s):
  • mozilla