First published: Tue Dec 19 2000(Updated: )
HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sun Hotjava Browser | =3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2000-0958 is considered a moderate severity vulnerability due to its potential to allow unauthorized access to the Document Object Model.
To mitigate CVE-2000-0958, users should upgrade to a more secure web browser that does not exhibit this vulnerability.
CVE-2000-0958 specifically affects HotJava Browser version 3.0.
Yes, CVE-2000-0958 can be exploited by remote attackers through crafted javascript URLs opened in named windows.
CVE-2000-0958 can facilitate cross-site scripting attacks by allowing remote attackers to manipulate the DOM of web pages.