CVE-2007-1095

Severity

68%

Complexity

86%

Confidentiality

106%

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote attackers to run certain JavaScript code and access the location DOM hierarchy in the context of the next web site that is visited by a client.

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote attackers to run certain JavaScript code and access the location DOM hierarchy in the context of the next web site that is visited by a client.

CVSS 2.0 Base Score 6.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:P).

Overview

Type

Mozilla

First reported 17 years ago

2007-02-26 17:28:00

Last updated 6 years ago

2018-10-16 16:36:00

Affected Software

Mozilla Firefox 0.1

0.1

Mozilla Firefox 0.2

0.2

Mozilla Firefox 0.3

0.3

Mozilla Firefox 0.4

0.4

Mozilla Firefox 0.5

0.5

Mozilla Firefox 0.6

0.6

Mozilla Firefox 0.6.1

0.6.1

Mozilla Firefox 0.7

0.7

Mozilla Firefox 0.7.1

0.7.1

Mozilla Firefox 0.8

0.8

Mozilla Firefox 0.9

0.9

Mozilla Firefox 0.9 rc

0.9

Mozilla Firefox 0.9.1

0.9.1

Mozilla Firefox 0.9.2

0.9.2

Mozilla Firefox 0.9.3

0.9.3

Mozilla Firefox 0.10

0.10

Mozilla Firefox 0.10.1

0.10.1

Mozilla Firefox 1.0

1.0

Mozilla Firefox 1.0 Preview Release

1.0

Mozilla Firefox 1.0.1

1.0.1

Mozilla Firefox 1.0.2

1.0.2

Mozilla Firefox 1.0.3

1.0.3

Mozilla Firefox 1.0.4

1.0.4

Mozilla Firefox 1.0.5

1.0.5

Mozilla Firefox 1.0.6

1.0.6

Mozilla Firefox 1.0.7

1.0.7

Mozilla Firefox 1.0.8

1.0.8

Mozilla Firefox 1.4.1

1.4.1

Mozilla Firefox 1.5

1.5

Mozilla Firefox 1.5 Beta 1

1.5

Mozilla Firefox 1.5 Beta 2

1.5

Mozilla Firefox 1.5.0.1

1.5.0.1

Mozilla Firefox 1.5.0.2

1.5.0.2

Mozilla Firefox 1.5.0.3

1.5.0.3

Mozilla Firefox 1.5.0.4

1.5.0.4

Mozilla Firefox 1.5.0.5

1.5.0.5

Mozilla Firefox 1.5.0.6

1.5.0.6

Mozilla Firefox 1.5.0.7

1.5.0.7

Mozilla Firefox 1.5.0.8

1.5.0.8

Mozilla Firefox 1.5.0.9

1.5.0.9

Mozilla Firefox 1.5.0.10

1.5.0.10

Mozilla Firefox 1.5.0.11

1.5.0.11

Mozilla Firefox 1.5.0.12

1.5.0.12

Mozilla Firefox 1.5.1

1.5.1

Mozilla Firefox 1.5.2

1.5.2

Mozilla Firefox 1.5.3

1.5.3

Mozilla Firefox 1.5.4

1.5.4

Mozilla Firefox 1.5.5

1.5.5

Mozilla Firefox 1.5.6

1.5.6

Mozilla Firefox 1.5.7

1.5.7

Mozilla Firefox 1.5.8

1.5.8

Mozilla Firefox 1.8

1.8

Mozilla Firefox 2.0

2.0

Mozilla Firefox 2.0.0.1

2.0.0.1

Mozilla Firefox 2.0.0.2

2.0.0.2

Mozilla Firefox 2.0.0.3

2.0.0.3

Mozilla Firefox 2.0.0.4

2.0.0.4

Mozilla Firefox 2.0.0.5

2.0.0.5

Mozilla Firefox 2.0.0.6

2.0.0.6

Mozilla Firefox

Mozilla SeaMonkey 1.0

1.0

Mozilla SeaMonkey 1.0.1

1.0.1

Mozilla SeaMonkey 1.0.2

1.0.2

Mozilla SeaMonkey 1.0.3

1.0.3

Mozilla SeaMonkey 1.0.4

1.0.4

Mozilla SeaMonkey 1.0.5

1.0.5

Mozilla SeaMonkey 1.0.6

1.0.6

Mozilla SeaMonkey 1.0.7

1.0.7

Mozilla SeaMonkey 1.0.8

1.0.8

Mozilla SeaMonkey 1.0.9

1.0.9

Mozilla SeaMonkey 1.1

1.1

Mozilla Seamonkey 1.1.1

1.1.1

Mozilla Seamonkey 1.1.2

1.1.2

Mozilla Seamonkey 1.1.3

1.1.3

Mozilla SeaMonkey

References

HPSBUX02153

http://lcamtuf.coredump.cx/ietrap/ff/

20070223 MSIE7 browser entrapment vulnerability (probably Firefox, too)

33809

27276

Vendor Advisory

27298

Vendor Advisory

27311

Vendor Advisory

27315

Vendor Advisory

27325

Vendor Advisory

27327

Vendor Advisory

27335

Vendor Advisory

27336

Vendor Advisory

27356

Vendor Advisory

27360

Vendor Advisory

27383

Vendor Advisory

27387

Vendor Advisory

27403

Vendor Advisory

27414

Vendor Advisory

27425

Vendor Advisory

27480

Vendor Advisory

27665

Vendor Advisory

27680

Vendor Advisory

28398

Vendor Advisory

2310

1018837

201516

http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html

DSA-1392

DSA-1396

DSA-1401

GLSA-200711-14

MDKSA-2007:202

http://www.mozilla.org/security/announce/2007/mfsa2007-30.html

SUSE-SA:2007:057

RHSA-2007:0979

Vendor Advisory

RHSA-2007:0980

Vendor Advisory

RHSA-2007:0981

Vendor Advisory

20070223 Firefox: onUnload tailgating (MSIE7 entrapment bug variant)

20070223 MSIE7 browser entrapment vulnerability (probably Firefox, too)

20071026 rPSA-2007-0225-1 firefox

20071029 FLEA-2007-0062-1 firefox

20071029 rPSA-2007-0225-2 firefox thunderbird

22688

USN-536-1

ADV-2007-3544

ADV-2007-3587

ADV-2008-0083

https://bugzilla.mozilla.org/show_bug.cgi?id=371360

ie-mozilla-onunload-dos(32647)

ie-mozilla-onunload-url-spoofing(32649)

https://issues.rpath.com/browse/RPL-1858

oval:org.mitre.oval:def:11665

USN-535-1

FEDORA-2007-3431

FEDORA-2007-2601

FEDORA-2007-2664

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.