Bug 127120
Summary: | CAN-2004-0718 frame injection (spoofing) vuln in Mozilla before 1.7 | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Barry K. Nathan <barryn> |
Component: | mozilla | Assignee: | Christopher Aillon <caillon> |
Status: | CLOSED ERRATA | QA Contact: | Ben Levenson <benl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 2 | CC: | barryn, bressers, sp |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/ | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2004-08-13 03:55:52 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Barry K. Nathan
2004-07-02 08:05:05 UTC
FWIW, the upstream (bugzilla.mozilla.org) bug number for this is 246448: http://bugzilla.mozilla.org/show_bug.cgi?id=246448 And this vulnerability is also mentioned on Slashdot: http://developers.slashdot.org/article.pl?sid=04/07/01/1741243 Blizzard pushed out the errata for this. Errata was pushed for FC2, but not FC1. (Todd Denniston filed bug 130464 regarding this.) |