FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-1095

This CVE name corresponds to:

Entered Topic
2007-10-22 firefox -- OnUnload Javascript browser entrapment vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-1095 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-1095
Phase Assigned(20070226)

Description

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote attackers to run certain JavaScript code and access the location DOM hierarchy in the context of the next web site that is visited by a client.

References

Source Reference
BUGTRAQ 20070223 Firefox: onUnload tailgating (MSIE7 entrapment bug variant)
BUGTRAQ 20070223 MSIE7 browser entrapment vulnerability (probably Firefox, too)
BUGTRAQ 20071029 FLEA-2007-0062-1 firefox
BUGTRAQ 20071026 rPSA-2007-0225-1 firefox
BUGTRAQ 20071029 rPSA-2007-0225-2 firefox thunderbird
FULLDISC 20070223 MSIE7 browser entrapment vulnerability (probably Firefox, too)
MISC http://lcamtuf.coredump.cx/ietrap/ff/
MISC https://bugzilla.mozilla.org/show_bug.cgi?id=371360
CONFIRM http://www.mozilla.org/security/announce/2007/mfsa2007-30.html
CONFIRM https://issues.rpath.com/browse/RPL-1858
CONFIRM http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html
DEBIAN DSA-1396
DEBIAN DSA-1401
DEBIAN DSA-1392
FEDORA FEDORA-2007-2601
FEDORA FEDORA-2007-2664
FEDORA FEDORA-2007-3431
GENTOO GLSA-200711-14
HP HPSBUX02153
HP SSRT061181
MANDRIVA MDKSA-2007:202
REDHAT RHSA-2007:0979
REDHAT RHSA-2007:0980
REDHAT RHSA-2007:0981
SUNALERT 201516
SUSE SUSE-SA:2007:057
UBUNTU USN-535-1
UBUNTU USN-536-1
BID 22688
OVAL oval:org.mitre.oval:def:11665
VUPEN ADV-2007-3544
VUPEN ADV-2007-3587
VUPEN ADV-2008-0083
OSVDB 33809
SECTRACK 1018837
SECUNIA 27276
SECUNIA 27325
SECUNIA 27327
SECUNIA 27335
SECUNIA 27356
SECUNIA 27383
SECUNIA 27425
SECUNIA 27403
SECUNIA 27480
SECUNIA 27387
SECUNIA 27298
SECUNIA 27311
SECUNIA 27315
SECUNIA 27336
SECUNIA 27665
SECUNIA 27414
SECUNIA 27680
SECUNIA 27360
SECUNIA 28398
SREASON 2310
XF ie-mozilla-onunload-dos(32647)
XF ie-mozilla-onunload-url-spoofing(32649)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.