CVE-2007-1256: Buffer Overflow
First published: Sat Mar 03 2007(Updated: )
Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to another website, a variant of CVE-2007-1092.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | =2.0.0.2 | |
| Mozilla Firefox | =2.0 | |
| Mozilla Firefox | =2.0.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/mozilla
- canonical/mozilla firefox
- version/mozilla firefox/2.0.0.2
- version/mozilla firefox/2.0
- version/mozilla firefox/2.0.0.1