CVE-2002-1126

Name of the Vulnerable Software and Affected Versions nautilus-devel versions 1.0.4 nautilus versions 1.0.4 nautilus-mozilla versions 1.0.4 Mozilla versions 1.1 and earlier

Description The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited remotely. In certain situations, when a new page is being loaded, the document referrer is set too quickly, allowing web pages to determine the next page being visited, including manually entered URLs, using the onunload handler.

Recommendations For nautilus-devel version 1.0.4, consider restricting access to the package until a patch is available. For nautilus version 1.0.4, consider restricting access to the package until a patch is available. For nautilus-mozilla version 1.0.4, consider restricting access to the package until a patch is available. For Mozilla versions 1.1 and earlier, consider disabling the onunload handler as a temporary workaround until a patch is available.