Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2004-1156

Disclosure Date: December 31, 2004
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the “window injection” vulnerability.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

Technical Analysis