2.6

CVE-2004-1451

Exploit

Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote attackers to trick users into clicking on unknown or untrusted sites and facilitate phishing attacks.

Data is provided by the National Vulnerability Database (NVD)
MozillaMozilla Version0.8
MozillaMozilla Version0.9.2
MozillaMozilla Version0.9.2.1
MozillaMozilla Version0.9.3
MozillaMozilla Version0.9.4
MozillaMozilla Version0.9.4.1
MozillaMozilla Version0.9.5
MozillaMozilla Version0.9.6
MozillaMozilla Version0.9.7
MozillaMozilla Version0.9.8
MozillaMozilla Version0.9.9
MozillaMozilla Version0.9.35
MozillaMozilla Version0.9.48
MozillaMozilla Version1.0
MozillaMozilla Version1.0 Updaterc1
MozillaMozilla Version1.0 Updaterc2
MozillaMozilla Version1.0.1
MozillaMozilla Version1.0.2
MozillaMozilla Version1.1
MozillaMozilla Version1.1 Updatealpha
MozillaMozilla Version1.1 Updatebeta
MozillaMozilla Version1.2
MozillaMozilla Version1.2 Updatealpha
MozillaMozilla Version1.2 Updatebeta
MozillaMozilla Version1.2.1
MozillaMozilla Version1.3
MozillaMozilla Version1.3.1
MozillaMozilla Version1.4
MozillaMozilla Version1.4 Updatealpha
MozillaMozilla Version1.4 Updatebeta
MozillaMozilla Version1.4.1
MozillaMozilla Version1.4.2
MozillaMozilla Version1.4.4
MozillaMozilla Version1.5
MozillaMozilla Version1.5.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.45% 0.607
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.6 4.9 2.9
AV:N/AC:H/Au:N/C:N/I:P/A:N