NVD Vulnerability Detail

CVE-2007-5334

Summary	Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute.
Publication Date	Oct. 22, 2007, 5:17 a.m.
Registration Date	Jan. 29, 2021, 2:21 p.m.
Last Update	Oct. 16, 2018, 6:42 a.m.

CVSS2.0 : MEDIUM
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	低
可用性への影響(A)	なし
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	はい

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:mozilla:firefox::::::::		2.0.0.7
cpe:2.3:a:mozilla:seamonkey::::::::		1.1.4

Related information, measures and tools

No	URL	refsource	タグ
1	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742	HP
2	http://secunia.com/advisories/27276	SECUNIA
3	http://secunia.com/advisories/27298	SECUNIA
4	http://secunia.com/advisories/27311	SECUNIA
5	http://secunia.com/advisories/27315	SECUNIA
6	http://secunia.com/advisories/27325	SECUNIA
7	http://secunia.com/advisories/27327	SECUNIA
8	http://secunia.com/advisories/27335	SECUNIA
9	http://secunia.com/advisories/27336	SECUNIA
10	http://secunia.com/advisories/27356	SECUNIA
11	http://secunia.com/advisories/27360	SECUNIA
12	http://secunia.com/advisories/27383	SECUNIA
13	http://secunia.com/advisories/27387	SECUNIA
14	http://secunia.com/advisories/27403	SECUNIA
15	http://secunia.com/advisories/27414	SECUNIA
16	http://secunia.com/advisories/27425	SECUNIA
17	http://secunia.com/advisories/27480	SECUNIA
18	http://secunia.com/advisories/27665	SECUNIA
19	http://secunia.com/advisories/27680	SECUNIA
20	http://secunia.com/advisories/28398	SECUNIA
21	http://securitytracker.com/id?1018837	SECTRACK
22	http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1	SUNALERT
23	http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html	CONFIRM
24	http://www.debian.org/security/2007/dsa-1392	DEBIAN
25	http://www.debian.org/security/2007/dsa-1396	DEBIAN
26	http://www.debian.org/security/2007/dsa-1401	DEBIAN
27	http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml	GENTOO
28	http://www.kb.cert.org/vuls/id/349217	CERT-VN	US Government Resource
29	http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202	MANDRIVA
30	http://www.mozilla.org/security/announce/2007/mfsa2007-33.html	CONFIRM	Patch
31	http://www.novell.com/linux/security/advisories/2007_57_mozilla.html	SUSE
32	http://www.redhat.com/support/errata/RHSA-2007-0979.html	REDHAT
33	http://www.redhat.com/support/errata/RHSA-2007-0980.html	REDHAT
34	http://www.redhat.com/support/errata/RHSA-2007-0981.html	REDHAT
35	http://www.securityfocus.com/archive/1/482876/100/200/threaded	BUGTRAQ
36	http://www.securityfocus.com/archive/1/482925/100/0/threaded	BUGTRAQ
37	http://www.securityfocus.com/archive/1/482932/100/200/threaded	BUGTRAQ
38	http://www.securityfocus.com/bid/26132	BID
39	http://www.ubuntu.com/usn/usn-536-1	UBUNTU
40	http://www.vupen.com/english/advisories/2007/3544	VUPEN
41	http://www.vupen.com/english/advisories/2007/3587	VUPEN
42	http://www.vupen.com/english/advisories/2008/0083	VUPEN
43	https://bugzilla.mozilla.org/show_bug.cgi?id=391043	MISC
44	https://exchange.xforce.ibmcloud.com/vulnerabilities/37286	XF
45	https://issues.rpath.com/browse/RPL-1858	CONFIRM
46	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11482	OVAL
47	https://usn.ubuntu.com/535-1/	UBUNTU
48	https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00498.html	FEDORA
49	https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00285.html	FEDORA
50	https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html	FEDORA

Common Vulnerabilities List