Oval Definition:oval:org.mitre.oval:def:100051
Revision Date:2007-05-09Version:5
Title:Firefox Script-generated Download Prompt Bypass
Description:Firefox before 1.0 does not properly distinguish between user-generated and synthetic click events, which allows remote attackers to use Javascript to bypass the file download prompt when the user uses the Alt-click feature.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0145
Platform(s):Microsoft Windows 2000
Microsoft Windows NT
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):Mozilla Firefox
Definition Synopsis
  • Mozilla Firefox version 0.9 or earlier is installed
  • Firefox version 0.9 or earlier is installed
  • AND Mozilla Firefox version 0.9 or earlier is installed
  • BACK