| Revision Date: | 2013-04-29 | Version: | 11 | | Title: | The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequence in the URL, which appears before the real hostname. | | Description: | The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequence in the URL, which appears before the real hostname. | | Family: | unix | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2005-0590
| | Platform(s): | CentOS Linux 3
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
| Product(s): | | | Definition Synopsis | | OS Section: RHEL3, CentOS3 RHEL3 or CentOS3
The operating system installed on the system is Red Hat Enterprise Linux 3
OR CentOS Linux 3.x
AND Configuration section
mozilla-js-debugger is earlier than 37:1.7.7-1.1.3.4
OR mozilla is earlier than 37:1.7.7-1.1.3.4
OR mozilla-chat is earlier than 37:1.7.7-1.1.3.4
OR mozilla-mail is earlier than 37:1.7.7-1.1.3.4
OR mozilla-dom-inspector is earlier than 37:1.7.7-1.1.3.4
OR mozilla-devel is earlier than 37:1.7.7-1.1.3.4
OR mozilla-nss is earlier than 37:1.7.7-1.1.3.4
OR mozilla-nss-devel is earlier than 37:1.7.7-1.1.3.4
OR mozilla-nspr is earlier than 37:1.7.7-1.1.3.4
OR mozilla-nspr-devel is earlier than 37:1.7.7-1.1.3.4
OR OS Section: RHEL4, CentOS4, Oracle Linux 4
RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND firefox is earlier than 0:1.0.1-1.4.3
|
|