Описание
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey before 1.1.12, allow user-assisted remote attackers to move a window during a mouse click, and possibly force a file download or unspecified other drag-and-drop action, via a crafted onmousedown action that calls window.moveBy, a variant of CVE-2003-0823.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.5.dfsg+1.5.0.15~prepatch080614e-0ubuntu3 |
| devel | released | 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 |
| feisty | released | 2.0.0.17+0nobinonly-0ubuntu0.7.4 |
| gutsy | released | 2.0.0.17+1nobinonly-0ubuntu0.7.10 |
| hardy | released | 2.0.0.17+1nobinonly-0ubuntu0.8.04.1 |
| intrepid | DNE | |
| jaunty | DNE | |
| karmic | DNE | |
| lucid | released | 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 |
| maverick | released | 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| feisty | DNE | |
| gutsy | ignored | end of life, was needed |
| hardy | released | 3.0.3+build1+nobinonly-0ubuntu0.8.04.1 |
| intrepid | released | 3.0.3+build1+nobinonly-0ubuntu1 |
| jaunty | released | 3.0.3+build1+nobinonly-0ubuntu1 |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| feisty | DNE | |
| gutsy | ignored | end of life, was needed |
| hardy | DNE | |
| intrepid | DNE | |
| jaunty | DNE | |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 1.1.12+nobinonly-0ubuntu1 |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | released | 1.1.12+nobinonly-0ubuntu0.8.04.1 |
| intrepid | released | 1.1.12+nobinonly-0ubuntu1 |
| jaunty | released | 1.1.12+nobinonly-0ubuntu1 |
| karmic | released | 1.1.12+nobinonly-0ubuntu1 |
| lucid | released | 1.1.12+nobinonly-0ubuntu1 |
| maverick | released | 1.1.12+nobinonly-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| feisty | ignored | end of life, was needed |
| gutsy | released | 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1 |
| hardy | released | 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1 |
| intrepid | released | 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.10.1 |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | DNE | |
| maverick | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| feisty | DNE | |
| gutsy | ignored | end of life, was needed |
| hardy | released | 1.9.0.3+build1+nobinonly-0ubuntu0.8.04.1 |
| intrepid | released | 1.9.0.3+build1+nobinonly-0ubuntu2 |
| jaunty | released | 1.9.0.3+build1+nobinonly-0ubuntu2 |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey before 1.1.12, allow user-assisted remote attackers to move a window during a mouse click, and possibly force a file download or unspecified other drag-and-drop action, via a crafted onmousedown action that calls window.moveBy, a variant of CVE-2003-0823.
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey before 1.1.12, allow user-assisted remote attackers to move a window during a mouse click, and possibly force a file download or unspecified other drag-and-drop action, via a crafted onmousedown action that calls window.moveBy, a variant of CVE-2003-0823.
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey be ...
Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey before 1.1.12, allow user-assisted remote attackers to move a window during a mouse click, and possibly force a file download or unspecified other drag-and-drop action, via a crafted onmousedown action that calls window.moveBy, a variant of CVE-2003-0823.
EPSS
9.3 Critical
CVSS2