CVE-2006-4569 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-4569 Interim 1 4 2023-12-09T02:17:18Z current 2021-05-30T12:36:44Z 2023-12-09T02:17:18Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-4569 The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked popups" display in the context of the Location bar instead of the subframe from which the popup originated, which might make it easier for remote user-assisted attackers to conduct cross-site scripting (XSS) attacks. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MLBAOGY75LOJU7F2SA7FVB2MGLENLLFF/#MLBAOGY75LOJU7F2SA7FVB2MGLENLLFF E-Mail link for SUSE-SA:2006:054 https://www.suse.com/support/security/rating/ SUSE Security Ratings The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked popups" display in the context of the Location bar instead of the subframe from which the popup originated, which might make it easier for remote user-assisted attackers to conduct cross-site scripting (XSS) attacks. CVE-2006-4569 low 2.6 AV:N/AC:H/Au:N/C:N/I:P/A:N