Window Spoofing Vulnerability in Firefox and Mozilla Products
CVE-2005-2707

Currently unrated

Key Information:

Vendor
Mozilla
Status
Firefox
Mozilla Suite
Vendor
CVE Published:
23 September 2005

Summary

This vulnerability in Firefox and the Mozilla Suite allows remote attackers to create windows without standard user interface components, such as the address bar and status bar. This exploitation could lead to spoofing or phishing attacks, as legitimate content can be masked, misleading users into providing sensitive information. Timely updates are crucial to mitigate potential exploitations.

References

http://www.mandriva.com/security/advisories?name=MDKSA-20...
vendor-advisoryx_refsource_MANDRIVA
http://www.debian.org/security/2005/dsa-868
vendor-advisoryx_refsource_DEBIAN
http://www.vupen.com/english/advisories/2005/1824
vdb-entryx_refsource_VUPEN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.