Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 1.0.6 (including) |
Firefox | Mozilla | 1.0 (including) | 1.0 (including) |
Firefox | Mozilla | 1.0.1 (including) | 1.0.1 (including) |
Firefox | Mozilla | 1.0.2 (including) | 1.0.2 (including) |
Firefox | Mozilla | 1.0.3 (including) | 1.0.3 (including) |
Firefox | Mozilla | 1.0.4 (including) | 1.0.4 (including) |
Firefox | Mozilla | 1.0.5 (including) | 1.0.5 (including) |
Mozilla_suite | Mozilla | * | 1.7.11 (including) |
Mozilla_suite | Mozilla | 1.7.6 (including) | 1.7.6 (including) |
Mozilla_suite | Mozilla | 1.7.7 (including) | 1.7.7 (including) |
Mozilla_suite | Mozilla | 1.7.8 (including) | 1.7.8 (including) |
Mozilla_suite | Mozilla | 1.7.10 (including) | 1.7.10 (including) |