CVE-2007-5334

Severity

43%

Complexity

86%

Confidentiality

48%

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute.

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

Type

Mozilla

First reported 17 years ago

2007-10-21 20:17:00

Last updated 6 years ago

2018-10-15 21:42:00

Affected Software

Mozilla Firefox

Mozilla SeaMonkey

References

HPSBUX02153

27276

27298

27311

27315

27325

27327

27335

27336

27356

27360

27383

27387

27403

27414

27425

27480

27665

27680

28398

1018837

201516

http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html

DSA-1392

DSA-1396

DSA-1401

GLSA-200711-14

VU#349217

US Government Resource

MDKSA-2007:202

http://www.mozilla.org/security/announce/2007/mfsa2007-33.html

Patch

SUSE-SA:2007:057

RHSA-2007:0979

RHSA-2007:0980

RHSA-2007:0981

20071026 rPSA-2007-0225-1 firefox

20071029 FLEA-2007-0062-1 firefox

20071029 rPSA-2007-0225-2 firefox thunderbird

26132

USN-536-1

ADV-2007-3544

ADV-2007-3587

ADV-2008-0083

https://bugzilla.mozilla.org/show_bug.cgi?id=391043

mozilla-xul-page-spoofing(37286)

https://issues.rpath.com/browse/RPL-1858

oval:org.mitre.oval:def:11482

USN-535-1

FEDORA-2007-3431

FEDORA-2007-2601

FEDORA-2007-2664

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.