Vulnerabilities > CVE-2007-1970 - Remote Security vulnerability in Firefox
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Mozilla Firefox does not warn the user about HTTP elements on an HTTPS page when the HTTP elements are dynamically created by a delayed document.write, which allows remote attackers to supply unauthenticated content and conduct phishing attacks.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |