Vulnerabilities > CVE-2005-4809 - Unspecified vulnerability in Mozilla Firefox, Mozilla and Thunderbird

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

mozilla

exploit available

NVD

Published: 2005-12-31

Updated: 2017-07-20

Summary

Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla and Thunderbird, allows remote attackers to spoof the URL in the Status Bar via an A HREF tag that contains a TABLE tag that contains another A tag.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox 0.8 Mozilla Firefox 0.9 Mozilla Firefox 0.9.1 Mozilla Firefox 0.9.2 Mozilla Firefox 0.9.3 Mozilla Firefox 0.10 Mozilla Firefox 0.10.1 Mozilla Firefox 1.0 Mozilla Firefox 1.0.1 Mozilla Firefox Preview_Release Mozilla Mozilla 1.7.3 Mozilla Mozilla 1.7.4 Mozilla Mozilla 1.7.5 Mozilla Mozilla 1.7.6 Mozilla Thunderbird 0.6 Mozilla Thunderbird 0.7 Mozilla Thunderbird 0.7.1 Mozilla Thunderbird 0.7.2 Mozilla Thunderbird 0.7.3 Mozilla Thunderbird 0.8 Mozilla Thunderbird 0.9 Mozilla Thunderbird 1.0 Mozilla Thunderbird 1.0.1	24

Exploit-Db

description	Mozilla Suite/Firefox/Thunderbird Nested Anchor Tag Status Bar Spoofing Weakness. CVE-2005-4809. Remote exploit for linux platform
id	EDB-ID:25221
last seen	2016-02-03
modified	2005-03-14
published	2005-03-14
reporter	bitlance winter
source	https://www.exploit-db.com/download/25221/
title	Mozilla Suite/Firefox/Thunderbird Nested Anchor Tag Status Bar Spoofing Weakness

Summary

Vulnerable Configurations

Exploit-Db

References