Secunia
Login
|
|
CVE Reference: CVE-2011-0059 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2011-0059 |
|
|
Description: Cross-site request forgery (CSRF) vulnerability in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, allows remote attackers to hijack the authentication of arbitrary users for requests that were initiated by a plugin and received a 307 redirect to a page on a different web site. |
|
|
CVE Status: Candidate |
|
|
References: REDHAT http://www.redhat.com/support/errata/RHSA-2011-0313.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14473 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2011:041 CONFIRM http://support.avaya.com/css/P8/documents/100128655 http://www.mozilla.org/security/announce/2011/mfsa2011-10.html BID 46652 |
|
| Return to the previous page. |
