CVE-2007-0800Mozilla Firefox vulnerability

12 documents6 sources
Severity
4.3MEDIUMNVD
EPSS
4.7%
top 10.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mozilla Firefox
Timeline
PublishedFeb 7
Latest updateMay 3

Description

Cross-zone vulnerability in Mozilla Firefox 1.5.0.9 considers blocked popups to have an internal zone origin, which allows user-assisted remote attackers to cross zone restrictions and read arbitrary file:// URIs by convincing a user to show a blocked popup.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDmozilla/firefox1.5.0.9

🔴Vulnerability Details

1
GHSA
GHSA-43j5-m4qg-whf7: Cross-zone vulnerability in Mozilla Firefox 12022-05-03

💥Exploits & PoCs

1
Exploit-DB
IBM Lotus Domino Server 6.5 - Remote Overflow2007-03-31

📋Vendor Advisories

3
Ubuntu
Firefox regression2007-03-02
Ubuntu
Firefox vulnerabilities2007-03-01
Red Hat
security flaw2007-02-23

💬Community

6
Bugzilla
CVE-2007-0800 security flaw2018-08-16
Bugzilla
CVE-2007-0775 Multiple Thunderbird flaws (CVE-2007-0777, CVE-2007-0995, CVE-2007-0996, CVE-2006-6077, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0008, CVE-2007-0009, CVE-20072007-03-01
Bugzilla
CVE-2007-0775 Multiple Thunderbird flaws (CVE-2007-0777, CVE-2007-0995, CVE-2007-0996, CVE-2006-6077, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0008, CVE-2007-0009, CVE-20072007-03-01
Bugzilla
CVE-2007-0775 Multiple Firefox flaws (CVE-2007-0777, CVE-2007-0994, CVE-2007-0995, CVE-2007-0996, CVE-2006-6077, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0008, CVE-2007-0002007-02-26
Bugzilla
CVE-2007-0775 Multiple Seamonkey flaws (CVE-2007-0777, CVE-2007-0995, CVE-2007-0996, CVE-2006-6077, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0008, CVE-2007-0009, CVE-2007-02007-02-23