Vulnerabilities

CVE-2007-3827

by Fred · 17/07/2007

Mozilla Firefox allows for cookies to be set with a null domain (aka "domainless cookies"), which allows remote attackers to pass information between arbitrary domains and track user activity, as demonstrated by the domain attribute in the document.cookie variable in a javascript: window.

Date published : 2007-07-17

http://www.securityfocus.com/archive/1/473702/100/0/threaded

http://securityreason.com/securityalert/2892

Similar

Tags: Cybersecurity Alert