CVE-2004-0191 in Firefoxinfo

Summary

Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cross-site scripting (XSS) attacks, as demonstrated using onmousemove events.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Disclosure

03/15/2004

Moderation

VulDB entry created

Entries

VDB-532 (1)

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

6.3

EPSS

0.01816

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0191
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0191
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0191/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!