English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 76783 CVE descriptions
and 40246 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2007-1095
Description:Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote attackers to run certain JavaScript code and access the location DOM hierarchy in the context of the next web site that is visited by a client.
Test IDs: 1.3.6.1.4.1.25623.1.0.58732   1.3.6.1.4.1.25623.1.0.58695   1.3.6.1.4.1.25623.1.0.58780   1.3.6.1.4.1.25623.1.0.59819   1.3.6.1.4.1.25623.1.0.59840   1.3.6.1.4.1.25623.1.0.58689  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2007-1095
Bugtraq: 20070223 Firefox: onUnload tailgating (MSIE7 entrapment bug variant) (Google Search)
http://www.securityfocus.com/archive/1/archive/1/461007/100/0/threaded
Bugtraq: 20070223 MSIE7 browser entrapment vulnerability (probably Firefox, too) (Google Search)
http://www.securityfocus.com/archive/1/archive/1/461023/100/0/threaded
Bugtraq: 20071029 FLEA-2007-0062-1 firefox (Google Search)
http://www.securityfocus.com/archive/1/archive/1/482925/100/0/threaded
Bugtraq: 20071026 rPSA-2007-0225-1 firefox (Google Search)
http://www.securityfocus.com/archive/1/archive/1/482876/100/200/threaded
Bugtraq: 20071029 rPSA-2007-0225-2 firefox thunderbird (Google Search)
http://www.securityfocus.com/archive/1/archive/1/482932/100/200/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052630.html
http://lcamtuf.coredump.cx/ietrap/ff/
https://bugzilla.mozilla.org/show_bug.cgi?id=371360
Debian Security Information: DSA-1396 (Google Search)
http://www.debian.org/security/2007/dsa-1396
Debian Security Information: DSA-1401 (Google Search)
http://www.debian.org/security/2007/dsa-1401
Debian Security Information: DSA-1392 (Google Search)
http://www.debian.org/security/2007/dsa-1392
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00285.html
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00498.html
http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml
HPdes Security Advisory: HPSBUX02153
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
HPdes Security Advisory: SSRT061181
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202
RedHat Security Advisories: RHSA-2007:0979
http://www.redhat.com/support/errata/RHSA-2007-0979.html
RedHat Security Advisories: RHSA-2007:0980
http://www.redhat.com/support/errata/RHSA-2007-0980.html
RedHat Security Advisories: RHSA-2007:0981
http://www.redhat.com/support/errata/RHSA-2007-0981.html
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
SuSE Security Announcement: SUSE-SA:2007:057 (Google Search)
http://www.novell.com/linux/security/advisories/2007_57_mozilla.html
http://www.ubuntulinux.org/support/documentation/usn/usn-535-1
http://www.ubuntu.com/usn/usn-536-1
BugTraq ID: 22688
http://www.securityfocus.com/bid/22688
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11665
http://www.vupen.com/english/advisories/2007/3544
http://www.vupen.com/english/advisories/2007/3587
http://www.vupen.com/english/advisories/2008/0083
http://osvdb.org/33809
http://securitytracker.com/id?1018837
http://secunia.com/advisories/27276
http://secunia.com/advisories/27325
http://secunia.com/advisories/27327
http://secunia.com/advisories/27335
http://secunia.com/advisories/27356
http://secunia.com/advisories/27383
http://secunia.com/advisories/27425
http://secunia.com/advisories/27403
http://secunia.com/advisories/27480
http://secunia.com/advisories/27387
http://secunia.com/advisories/27298
http://secunia.com/advisories/27311
http://secunia.com/advisories/27315
http://secunia.com/advisories/27336
http://secunia.com/advisories/27665
http://secunia.com/advisories/27414
http://secunia.com/advisories/27680
http://secunia.com/advisories/27360
http://secunia.com/advisories/28398
http://securityreason.com/securityalert/2310
XForce ISS Database: ie-mozilla-onunload-dos(32647)
http://xforce.iss.net/xforce/xfdb/32647
XForce ISS Database: ie-mozilla-onunload-url-spoofing(32649)
http://xforce.iss.net/xforce/xfdb/32649

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.