Red Hat Customer Portal

Skip to main content

CVE-2007-0981

Impact:
Moderate
Public Date:
2007-02-23
Bugzilla:
229253: CVE-2007-0981: seamonkey cookie setting / same-domain bypass vulnerability

The MITRE CVE dictionary describes this issue as:

Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8, allow remote attackers to bypass the same origin policy, steal cookies, and conduct other attacks by writing a URI with a null byte to the hostname (location.hostname) DOM property, due to interactions with DNS resolver code.

Find out more about CVE-2007-0981 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2007:0078 2007-03-02
Red Hat Enterprise Linux 4 (firefox) RHSA-2007:0079 2007-02-23
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2007:0108 2007-03-14
Red Hat Enterprise Linux 5 (yelp) RHSA-2007:0097 2007-03-14

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) thunderbird 1.5.0.10-1.el5 Fixed

Last Modified