NVD脆弱性詳細

CVE-2007-5334

概要	Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute.
公表日	2007年10月22日5:17
登録日	2021年1月29日14:21
最終更新日	2018年10月16日6:42

CVSS2.0 : MEDIUM
スコア	4.3
ベクター	AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	低
可用性への影響(A)	なし
全ての特権を取得	いいえ
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	はい

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:mozilla:firefox::::::::		2.0.0.7
cpe:2.3:a:mozilla:seamonkey::::::::		1.1.4

関連情報、対策とツール

No	URL	refsource	タグ
1	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742	HP
2	http://secunia.com/advisories/27276	SECUNIA
3	http://secunia.com/advisories/27298	SECUNIA
4	http://secunia.com/advisories/27311	SECUNIA
5	http://secunia.com/advisories/27315	SECUNIA
6	http://secunia.com/advisories/27325	SECUNIA
7	http://secunia.com/advisories/27327	SECUNIA
8	http://secunia.com/advisories/27335	SECUNIA
9	http://secunia.com/advisories/27336	SECUNIA
10	http://secunia.com/advisories/27356	SECUNIA
11	http://secunia.com/advisories/27360	SECUNIA
12	http://secunia.com/advisories/27383	SECUNIA
13	http://secunia.com/advisories/27387	SECUNIA
14	http://secunia.com/advisories/27403	SECUNIA
15	http://secunia.com/advisories/27414	SECUNIA
16	http://secunia.com/advisories/27425	SECUNIA
17	http://secunia.com/advisories/27480	SECUNIA
18	http://secunia.com/advisories/27665	SECUNIA
19	http://secunia.com/advisories/27680	SECUNIA
20	http://secunia.com/advisories/28398	SECUNIA
21	http://securitytracker.com/id?1018837	SECTRACK
22	http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1	SUNALERT
23	http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html	CONFIRM
24	http://www.debian.org/security/2007/dsa-1392	DEBIAN
25	http://www.debian.org/security/2007/dsa-1396	DEBIAN
26	http://www.debian.org/security/2007/dsa-1401	DEBIAN
27	http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml	GENTOO
28	http://www.kb.cert.org/vuls/id/349217	CERT-VN	US Government Resource
29	http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202	MANDRIVA
30	http://www.mozilla.org/security/announce/2007/mfsa2007-33.html	CONFIRM	Patch
31	http://www.novell.com/linux/security/advisories/2007_57_mozilla.html	SUSE
32	http://www.redhat.com/support/errata/RHSA-2007-0979.html	REDHAT
33	http://www.redhat.com/support/errata/RHSA-2007-0980.html	REDHAT
34	http://www.redhat.com/support/errata/RHSA-2007-0981.html	REDHAT
35	http://www.securityfocus.com/archive/1/482876/100/200/threaded	BUGTRAQ
36	http://www.securityfocus.com/archive/1/482925/100/0/threaded	BUGTRAQ
37	http://www.securityfocus.com/archive/1/482932/100/200/threaded	BUGTRAQ
38	http://www.securityfocus.com/bid/26132	BID
39	http://www.ubuntu.com/usn/usn-536-1	UBUNTU
40	http://www.vupen.com/english/advisories/2007/3544	VUPEN
41	http://www.vupen.com/english/advisories/2007/3587	VUPEN
42	http://www.vupen.com/english/advisories/2008/0083	VUPEN
43	https://bugzilla.mozilla.org/show_bug.cgi?id=391043	MISC
44	https://exchange.xforce.ibmcloud.com/vulnerabilities/37286	XF
45	https://issues.rpath.com/browse/RPL-1858	CONFIRM
46	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11482	OVAL
47	https://usn.ubuntu.com/535-1/	UBUNTU
48	https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00498.html	FEDORA
49	https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00285.html	FEDORA
50	https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html	FEDORA

共通脆弱性一覧