CVE-2008-0591 in Firefoxinfo

Summary

Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does not properly manage a delay timer used in confirmation dialogs, which might allow remote attackers to trick users into confirming an unsafe action, such as remote file execution, by using a timer to change the window focus, aka the "dialog refocus bug" or "ffclick2".

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

02/05/2008

Disclosure

02/08/2008

Moderation

VulDB entry created

Entries

VDB-3588 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

5.0

EPSS

0.07342

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-0591
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-0591
CVE Details	https://www.cvedetails.com/cve/CVE-2008-0591/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!