Firefox prior to 1.0.1 and Mozilla prior to 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox 0.9.2 |
||
mozilla firefox 0.9.3 |
||
mozilla mozilla 1.5.1 |
||
mozilla mozilla 1.5 |
||
mozilla mozilla 1.7.1 |
||
mozilla mozilla 1.7.2 |
||
mozilla mozilla 1.7 |
||
mozilla firefox 0.10.1 |
||
mozilla firefox 0.8 |
||
mozilla mozilla 1.3 |
||
mozilla mozilla 1.4 |
||
mozilla mozilla 1.6 |
||
mozilla firefox 0.9 |
||
mozilla firefox 0.9.1 |
||
mozilla mozilla 1.4.1 |
||
mozilla firefox 0.10 |
||
mozilla firefox 1.0 |
||
mozilla mozilla 1.7.3 |
||
mozilla mozilla 1.7.5 |