This CVE name corresponds to:
| Entered | Topic |
|---|---|
| 2005-01-24 | web browsers -- window injection vulnerabilities |
The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.
| Type | Candidate |
| Name | CVE-2004-1160 |
| Phase | Assigned(20041208) |
Netscape 7.x to 7.2, and possibly other versions, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.
| Source | Reference |
|---|---|
| MISC | http://secunia.com/secunia_research/2004-13/advisory/ |
| SECUNIA | 13402 |
| MISC | http://secunia.com/multiple_browsers_window_injection_vulnerability_test/ |
| BID | 11852 |
Copyright © 2005 The MITRE Corporation.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright
information.