Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 do not properly restrict write access to the window.fullScreen object, which allows remote attackers to spoof the user interface via a crafted web page.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox/Thunderbird/SeaMonkey欺骗攻击漏洞
Vulnerability Description
Mozilla Mozilla Firefox是美国Mozilla基金会开发的一款开源Web浏览器。 Mozilla Firefox 4.x至10.0版本,Firefox ESR 10.0.3之前的10.x版本,Thunderbird 5.0至10.0版本,Thunderbird ESR 10.0.3之前的10.x版本,SeaMonkey 2.8之前版本中存在漏洞,该漏洞源于未正确限制对window.fullScreen对象的写访问。远程攻击者可利用该漏洞借助特制网页,实施对用户界面的欺骗攻击。
CVSS Information
N/A
Vulnerability Type
N/A