← back
CVE-2004-1753

CVE-2004-1753

EPSS 1.6%
The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla 1.7.2, and Firefox 0.9.3 on MacOS X 10.3.5, when tabbed browsing is enabled, does not properly handle SetWindow(NULL) calls, which allows Java applets from one tab to draw to other tabs and facilitates phishing attacks that spoof tabs.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugzilla.mozilla.org/show_bug.cgi?id=162134http://secunia.com/advisories/12392https://exchange.xforce.ibmcloud.com/vulnerabilities/17137http://www.securityfocus.com/archive/1/373080http://www.securityfocus.com/archive/1/373232http://www.securityfocus.com/archive/1/373309http://www.securityfocus.com/bid/11059