Mozilla < 1.0.1 XMLSerializer Cross-domain Policy Access (deprecated)

medium Nessus Network Monitor Plugin ID 1756

Synopsis

The remote host is using a vulnerable version of the Mozilla web browser.

Description

The remote host is using the Mozilla web browser. The version used contains a flaw that may allow an attacker to set up a rogue web server which will gain access to the properties of other domains displayed in a frame or iframe.

Solution

Upgrade to Mozilla 1.0.1, 1.1 or higher.

Plugin Details

Severity: Medium

ID: 1756

Family: Web Clients

Published: 8/20/2004

Updated: 6/1/2015

Vulnerability Information

CPE: cpe:/a:mozilla:mozilla

Reference Information

BID: 5766

Detections

Analytics