- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-200712-21
(Mozilla Firefox, SeaMonkey: Multiple vulnerabilities)
Jesse Ruderman and Petko D. Petkov reported that the jar protocol
handler in Mozilla Firefox and SeaMonkey does not properly check MIME
types (CVE-2007-5947). Gregory Fleischer reported that the
window.location property can be used to generate a fake HTTP Referer
(CVE-2007-5960). Multiple memory errors have also been reported
(CVE-2007-5959).
Impact :
A remote attacker could possibly exploit these vulnerabilities to
execute arbitrary code in the context of the browser and conduct
Cross-Site-Scripting or Cross-Site Request Forgery attacks.
Workaround :
There is no known workaround at this time.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top