Revision Date: | 2007-05-09 | Version: | 5 |
Title: | Firefox Script-generated Download Prompt Bypass |
Description: | Firefox before 1.0 does not properly distinguish between user-generated and synthetic click events, which allows remote attackers to use Javascript to bypass the file download prompt when the user uses the Alt-click feature. |
Family: | windows | Class: | vulnerability |
Status: | ACCEPTED | Reference(s): | CVE-2005-0145
|
Platform(s): | Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows Server 2003 Microsoft Windows XP
| Product(s): | Mozilla Firefox
|
Definition Synopsis |
Mozilla Firefox version 0.9 or earlier is installed Firefox version 0.9 or earlier is installed
AND Mozilla Firefox version 0.9 or earlier is installed
|