Mozilla : Security Vulnerabilities, CVEs, Published In 2004 (XSS)
Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page (zombie document) and enable cross-domain and cross-site scripting (XSS) attacks, as demonstrated using onmousemove events.
Max CVSS
6.8
EPSS Score
1.38%
Published
2004-03-15
Updated
2017-10-10
1 vulnerabilities found