Mozilla Firefox 2.0.0.3 does not check URLs embedded in (1) object or (2) iframe HTML tags against the phishing site blacklist, which allows remote attackers to bypass phishing protection.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 2.0.0.3 (including) | 2.0.0.3 (including) |
Firefox | Ubuntu | dapper | * |
Firefox | Ubuntu | devel | * |
Firefox | Ubuntu | edgy | * |
Firefox | Ubuntu | feisty | * |
Firefox | Ubuntu | gutsy | * |
Firefox | Ubuntu | hardy | * |