Vulnerabilities > CVE-2009-4130 - Unspecified vulnerability in Mozilla Firefox

CVSS 5.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

mozilla

NVD

Published: 2009-12-14

Updated: 2017-08-17

Summary

Visual truncation vulnerability in the MakeScriptDialogTitle function in nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the origin domain name of a script via a long name.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox *	1

References

http://archives.neohapsis.com/archives/bugtraq/2009-12/0104.html
http://securitytracker.com/id?1023287
http://www.securityfocus.com/bid/37232
https://exchange.xforce.ibmcloud.com/vulnerabilities/54612