Vulnerability in Mozilla Firefox
CVE-2005-4685
Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie for a hostname formed via search-list ex…
EPSS: 0.012 (62.9th percentile) — read the EPSS interpretation.
Affected products
- Mozilla Firefox — versions 0.8, 0.9, 0.9.1
- Mozilla — versions 0.8, 0.9.2, 0.9.2.1
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (mailing-list, x_refsource_FULLDISC)
- cve@mitre.org (vdb-entry, x_refsource_XF)