CVE-2004-0718 — Firebird vulnerability

9 documents6 sources

Severity

7.5HIGHNVD

EPSS

1.9%

top 16.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Firebirdsql Firebird Mozilla Netscape Navigator

Timeline

PublishedJul 27

Latest updateMay 3

Description

The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDmozilla/mozilla1.6

▶NVDnetscape/navigator7.1

▶NVDfirebirdsql/firebird0.7

🔴Vulnerability Details

GHSA

GHSA-7wc5-rw74-x5q6: The (1) Mozilla 1↗2022-05-03

▶

CVEList

CVE-2004-0718: The (1) Mozilla 1↗2004-07-23

▶

💥Exploits & PoCs

Exploit-DB

Microsoft IIS - WebDAV XML Denial of Service (MS04-030)↗2004-10-20

▶

📋Vendor Advisories

Red Hat

security flaw↗2005-06-06

▶

Red Hat

security flaw↗2004-07-01

▶

💬Community

Bugzilla

CVE-2005-1937 security flaw↗2018-08-16

▶

Bugzilla

CVE-2004-0718 security flaw↗2018-08-16

▶