Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0718
HistoryJul 27, 2004 - 4:00 a.m.

CVE-2004-0718

2004-07-2704:00:00
[email protected]
web.nvd.nist.gov
46
cve-2004-0718
mozilla
firebird
firefox
netscape
frame injection vulnerability
web browser security
web site spoofing
information security

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6

Confidence

Low

EPSS

0.012

Percentile

84.9%

JSON

The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

Affected configurations

NVD
Node
firebirdsqlfirebirdMatch0.7
OR
mozillamozillaMatch1.6
OR
netscapenavigatorMatch7.1
VendorProductVersionCPE
firebirdsqlfirebird0.7cpe:/a:firebirdsql:firebird:0.7:::
netscapenavigator7.1cpe:/a:netscape:navigator:7.1:::
mozillamozilla1.6cpe:/a:mozilla:mozilla:1.6:::

Related

ubuntucve 2
nvd 2
cvelist 2
osv 3
openvas 17
cve 1
nessus 21
debian 6
freebsd 1
centos 3
ubuntu 2
redhat 3
suse 7
slackware 1
ubuntucve
ubuntucve
CVE-2004-0718
2004-07-27 00:00:00
CVE-2005-1937
2005-06-14 00:00:00
nvd
nvd
CVE-2004-0718
2004-07-27 04:00:00
CVE-2005-1937
2005-06-14 04:00:00
cvelist
cvelist
CVE-2004-0718
2004-07-23 04:00:00
CVE-2005-1937
2005-06-13 04:00:00
osv
osv
mozilla - frame injection spoofing
2005-08-17 00:00:00
mozilla-firefox - frame injection spoofing
2005-08-15 00:00:00
mozilla - several
2005-09-13 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-777-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 777-1 (mozilla)
2008-01-17 00:00:00
Debian Security Advisory DSA 775-1 (mozilla)
2008-01-17 00:00:00
cve
cve
CVE-2005-1937
2005-06-14 04:00:00
nessus
nessus
Debian DSA-777-1 : mozilla - frame injection spoofing
2005-08-18 00:00:00
Debian DSA-775-1 : mozilla-firefox - frame injection spoofing
2005-08-18 00:00:00
FreeBSD : Mutiple browser frame injection vulnerability (641859e8-eca1-11d8-b913-000c41e2cdad)
2011-10-13 00:00:00
debian
debian
[SECURITY] [DSA 775-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-15 11:02:20
[SECURITY] [DSA 777-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-17 09:27:19
[SECURITY] [DSA 777-1] New Mozilla packages fix frame injection spoofing vulnerability
2005-08-17 09:27:19
freebsd
freebsd
Mutiple browser frame injection vulnerability
2004-08-11 00:00:00
centos
centos
galeon, mozilla security update
2005-07-25 01:17:58
devhelp, mozilla security update
2005-07-22 15:23:45
firefox security update
2005-07-21 21:28:02
ubuntu
ubuntu
Firefox vulnerabilities
2005-07-21 00:00:00
Mozilla vulnerabilities
2005-07-27 00:00:00
redhat
redhat
(RHSA-2004:421) mozilla security update
2004-08-04 00:00:00
(RHSA-2005:587) mozilla security update
2005-07-22 00:00:00
(RHSA-2005:586) firefox security update
2005-07-21 00:00:00
suse
suse
remote DoS condition in apache2
2004-09-06 13:51:41
remote code execution in cups
2004-09-15 14:45:26
remote file disclosure in samba
2004-10-05 14:57:32
slackware
slackware
[slackware-security] Mozilla
2004-08-10 21:17:12

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6

Confidence

Low

EPSS

0.012

Percentile

84.9%

JSON
Related for CVE-2004-0718
ubuntucve2nvd2cvelist2osv3openvas17cve1nessus21debian6freebsd1centos3ubuntu2redhat3suse7slackware1