CVE-2004-0867
published 2004-12-23CVE-2004-0867: Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. NOTE: it was later reported that 2.x is also affected.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| kde | konqueror | — | — |
| microsoft | ie | — | — |
| microsoft | internet_explorer | — | — |
| mozilla | firefox | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |