PT-2004-2365 · Mozilla · Mozilla Firefox
Arkady Sherman
·
Published
2004-12-31
·
Updated
2008-09-05
·
CVE-2004-1451
CVSS v2.0
2.6
Low
| Vector | AV:N/AC:H/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
Mozilla versions prior to 1.6
Description:
The issue allows remote attackers to potentially trick users into clicking on unknown or untrusted sites, facilitating phishing attacks, by not displaying the entire URL in the status bar when a link contains
%00.Recommendations:
For versions prior to 1.6, update to version 1.6 or later to resolve the issue.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Mozilla Firefox