Vulnerability in Mozilla Firefox

CVE-2006-1740

Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening the trusted site in a popup window, the…

EPSS: 0.025 (82.5th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox — versions 1.0, 1.0.1, 1.0.2
Mozilla Mozilla_suite — versions 1.7.6, 1.7.7, 1.7.8
Mozilla Seamonkey — versions 1.0
Mozilla Thunderbird — versions 1.0, 1.0.1, 1.0.2
N/a — versions n/a

References

secalert@redhat.com (x_refsource_UBUNTU, vendor-advisory)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_HP, vendor-advisory)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (vendor-advisory, x_refsource_GENTOO)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
secalert@redhat.com (vendor-advisory, x_refsource_MANDRIVA)
secalert@redhat.com (x_refsource_CONFIRM)