CVE-2004-0909
First published: Fri Sep 24 2004(Updated: )
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Mozilla | =1.4.2 | |
| Mozilla Mozilla | =0.9.5 | |
| Mozilla Thunderbird | =0.6 | |
| Mozilla Thunderbird | =0.7.2 | |
| Mozilla Mozilla | =0.9.35 | |
| Mozilla Thunderbird | =0.3 | |
| Mozilla Mozilla | =0.9.3 | |
| Mozilla Mozilla | =1.0.1 | |
| Mozilla Mozilla | =1.7-alpha | |
| Mozilla Thunderbird | =0.2 | |
| Mozilla Mozilla | =0.9.48 | |
| Mozilla Mozilla | =1.7-rc1 | |
| Mozilla Mozilla | =1.2.1 | |
| Mozilla Mozilla | =1.0-rc1 | |
| Mozilla Mozilla | =1.2-alpha | |
| Mozilla Mozilla | =1.7 | |
| Mozilla Mozilla | =0.9.7 | |
| Mozilla Mozilla | =1.1-beta | |
| Mozilla Mozilla | =1.0-rc2 | |
| Mozilla Mozilla | =0.9.2.1 | |
| Mozilla Mozilla | =1.4.1 | |
| Mozilla Mozilla | =1.4-beta | |
| Mozilla Mozilla | =1.2 | |
| Mozilla Mozilla | =0.9.2 | |
| Mozilla Mozilla | =1.4.4 | |
| Mozilla Mozilla | =1.3 | |
| Mozilla Mozilla | =1.2-beta | |
| Mozilla Mozilla | =1.0 | |
| Mozilla Mozilla | =1.7-beta | |
| Mozilla Mozilla | =0.9.8 | |
| Mozilla Mozilla | =1.4 | |
| Mozilla Mozilla | =1.5 | |
| Mozilla Mozilla | =0.9.4 | |
| Mozilla Thunderbird | =0.5 | |
| Mozilla Mozilla | =1.7.1 | |
| Mozilla Mozilla | =1.4-alpha | |
| Mozilla Thunderbird | =0.4 | |
| Mozilla Thunderbird | =0.7 | |
| Mozilla Mozilla | =0.9.6 | |
| Mozilla Mozilla | =1.5.1 | |
| Mozilla Mozilla | =1.1 | |
| Mozilla Mozilla | =1.1-alpha | |
| Mozilla Mozilla | =0.9.4.1 | |
| Mozilla Mozilla | =0.8 | |
| Mozilla Mozilla | =1.7.2 | |
| Mozilla Thunderbird | =0.1 | |
| Mozilla Mozilla | =1.0.2 | |
| Mozilla Mozilla | =1.7-rc3 | |
| Mozilla Thunderbird | =0.7.1 | |
| Mozilla Mozilla | =1.7-rc2 | |
| Mozilla Mozilla | =1.3.1 | |
| Mozilla Mozilla | =0.9.9 | |
| Mozilla Mozilla | =1.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
- http://bugzilla.mozilla.org/show_bug.cgi?id=253942
- http://security.gentoo.org/glsa/glsa-200409-26.xml
- http://www.novell.com/linux/security/advisories/2004_36_mozilla.html
- http://www.kb.cert.org/vuls/id/113192
- http://secunia.com/advisories/12526
- http://marc.info/?l=bugtraq&m=109698896104418&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17377
- collector/nvd-historical
- vendor/mozilla
- product/mozilla
- canonical/mozilla mozilla
- product/thunderbird
- canonical/mozilla thunderbird
- collector/nvd-index
- agent/weakness
- agent/type
- agent/severity
- agent/references
- agent/author
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- version/mozilla mozilla/1.4.2
- version/mozilla mozilla/0.9.5
- version/mozilla thunderbird/0.6
- version/mozilla thunderbird/0.7.2
- version/mozilla mozilla/0.9.35
- version/mozilla thunderbird/0.3
- version/mozilla mozilla/0.9.3
- version/mozilla mozilla/1.0.1
- version/mozilla mozilla/1.7-alpha
- version/mozilla thunderbird/0.2
- version/mozilla mozilla/0.9.48
- version/mozilla mozilla/1.7-rc1
- version/mozilla mozilla/1.2.1
- version/mozilla mozilla/1.0-rc1
- version/mozilla mozilla/1.2-alpha
- version/mozilla mozilla/1.7
- version/mozilla mozilla/0.9.7
- version/mozilla mozilla/1.1-beta
- version/mozilla mozilla/1.0-rc2
- version/mozilla mozilla/0.9.2.1
- version/mozilla mozilla/1.4.1
- version/mozilla mozilla/1.4-beta
- version/mozilla mozilla/1.2
- version/mozilla mozilla/0.9.2
- version/mozilla mozilla/1.4.4
- version/mozilla mozilla/1.3
- version/mozilla mozilla/1.2-beta
- version/mozilla mozilla/1.0
- version/mozilla mozilla/1.7-beta
- version/mozilla mozilla/0.9.8
- version/mozilla mozilla/1.4
- version/mozilla mozilla/1.5
- version/mozilla mozilla/0.9.4
- version/mozilla thunderbird/0.5
- version/mozilla mozilla/1.7.1
- version/mozilla mozilla/1.4-alpha
- version/mozilla thunderbird/0.4
- version/mozilla thunderbird/0.7
- version/mozilla mozilla/0.9.6
- version/mozilla mozilla/1.5.1
- version/mozilla mozilla/1.1
- version/mozilla mozilla/1.1-alpha
- version/mozilla mozilla/0.9.4.1
- version/mozilla mozilla/0.8
- version/mozilla mozilla/1.7.2
- version/mozilla thunderbird/0.1
- version/mozilla mozilla/1.0.2
- version/mozilla mozilla/1.7-rc3
- version/mozilla thunderbird/0.7.1
- version/mozilla mozilla/1.7-rc2
- version/mozilla mozilla/1.3.1
- version/mozilla mozilla/0.9.9
- version/mozilla mozilla/1.6