Mozilla / Firefox user interface spoofing vulnerability
Oliver Eikemeier
eikemeier at fillmore-labs.com
Fri Jul 30 08:42:01 PDT 2004
AFAICT, the following packages are affected:
trevor at FreeBSD.org
- linux-mozilla-1.5
- linux-mozilla-devel-1.6a
gnome at FreeBSD.org
- firefox-0.9.1_1
- mozilla-1.7.1,2
- mozilla-1.8.a2,2
- mozilla-gtk1-1.7.1_1
portaudit reference:
<http://www.freebsd.org/ports/portaudit/730db824-e216-11d8-9b0a-000347a4fa7d.
html>
You might want to correct the VuXML entry when it is incorrect. Please
refer to:
<http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-
handbook/security-notify.html>
firefox-0.9.1_1 seems to be vulnerable to certificate spoofing too, I'm
not sure whether other versions are affected:
<http://www.freebsd.org/ports/portaudit/abe47a5a-e23c-11d8-9b0a-000347a4fa7d.
html>
Cheers
-Oliver
More information about the freebsd-gnome
mailing list