CVE-2006-4569 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-4569
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4569

Description: The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked popups" display in the context of the Location bar instead of the subframe from which the popup originated, which might make it easier for remote user-assisted attackers to conduct cross-site scripting (XSS) attacks.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/28957 UBUNTU http://www.ubuntu.com/usn/usn-354-1 http://www.ubuntu.com/usn/usn-351-1 SUSE http://www.novell.com/linux/security/advisories/2006_54_mozilla.html ST 1016849 SAID Secunia Advisory: SA22066 Secunia Advisory: SA24711 Secunia Advisory: SA22195 Secunia Advisory: SA22056 Secunia Advisory: SA22422 Secunia Advisory: SA22210 Secunia Advisory: SA21949 Secunia Advisory: SA21950 Secunia Advisory: SA22001 Secunia Advisory: SA22025 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0675.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:168 HP http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742 GENTOO http://security.gentoo.org/glsa/glsa-200609-19.xml CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-224.htm http://www.mozilla.org/security/announce/2006/mfsa2006-62.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/446140/100/0/threaded BID 20042

Return to the previous page.