CVE-2005-2266

Table of Contents

Impact:
Moderate
Public Date:
2005-07-12
Bugzilla:
1617700: CVE-2005-2266 security flaw

The MITRE CVE dictionary describes this issue as:

Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to call top.focus and other methods in a parent frame, even when the parent is in a different domain, which violates the same origin policy and allows remote attackers to steal sensitive information such as cookies and passwords from web sites whose child frames do not verify that they are in the same domain as their parents.

Find out more about CVE-2005-2266 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 RHSA-2005:587 2005-07-22
Red Hat Enterprise Linux 4 RHSA-2005:587 2005-07-22
Red Hat Enterprise Linux 4 (firefox) RHSA-2005:586 2005-07-21
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2005:601 2005-07-21
Red Hat Enterprise Linux 3 (mozilla) RHSA-2005:587 2005-07-22
Last Modified

CVE description copyright © 2017, The MITRE Corporation