CVE-2004-1380
CVE-2004-1380
Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability."
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/589não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://secunia.com/advisories/12712http://secunia.com/multiple_browsers_dialog_box_spoofing_test/http://secunia.com/multiple_browsers_form_field_focus_test/https://exchange.xforce.ibmcloud.com/vulnerabilities/18864https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100050https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10211http://www.mozilla.org/security/announce/mfsa2005-05.htmlhttp://www.redhat.com/support/errata/RHSA-2005-323.htmlhttp://www.redhat.com/support/errata/RHSA-2005-335.html