CVE-2007-2871 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-2871 Interim 1 5 2023-12-09T02:14:29Z current 2021-05-30T12:39:04Z 2023-12-09T02:14:29Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-2871 Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to spoof or hide the browser chrome, such as the location bar, by placing XUL popups outside of the browser's content pane. NOTE: this issue can be leveraged for phishing and other attacks. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JAOSB5RDI42SNMJTDLCQQCBLJ36GU7NK/#JAOSB5RDI42SNMJTDLCQQCBLJ36GU7NK E-Mail link for SUSE-SA:2007:036 https://www.suse.com/support/security/rating/ SUSE Security Ratings Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and SeaMonkey 1.0.9 and 1.1.2, allows remote attackers to spoof or hide the browser chrome, such as the location bar, by placing XUL popups outside of the browser's content pane. NOTE: this issue can be leveraged for phishing and other attacks. CVE-2007-2871 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N