NVD

Id
62030  
Name
CVE-2006-3352  
Description
** DISPUTED ** Cross-domain vulnerability in Mozilla Firefox allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker"s originating site that specifies a Location HTTP header that references the target site, which then makes that content available through the outerHTML attribute of the object. NOTE: this description was based on a report that has since been retracted by the original authors. The authors misinterpreted their test results. Other third parties also disputed the original report. Therefore, this is not a vulnerability. It is being assigned a candidate number to provide a clear indication of its status.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:N)  
Pub Date
2016-12-20  
Published
2006-07-05  
Modified Date
2008-09-05  
Seq
2006-3352  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
321130 62030 CVE-2006-3352 http://isc.sans.org/diary.php?storyid=1448  View
321131 62030 CVE-2006-3352 20060630 Browser bugs hit IE, Firefox today (SANS)  View
321132 62030 CVE-2006-3352 20060630 Re: [Full-disclosure] Browser bugs hit IE, Firefox today (SANS)  View
321133 62030 CVE-2006-3352 20060630 ISC: Firefox immune to outerHTML flaw in MSIE [Was: Browser bugs hit IE, Firefox]  View
321134 62030 CVE-2006-3352 20060630 RE: [Full-disclosure] Browser bugs hit IE, Firefox today (SANS)  View
321135 62030 CVE-2006-3352 20060630 Re: Browser bugs hit IE, Firefox today (SANS)  View
321136 62030 CVE-2006-3352 20060704 Re: Browser bugs hit IE, Firefox today (SANS)  View
321137 62030 CVE-2006-3352 18734  View

Related JVN