CVE-2003-1492

Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a different domain via an HTTP request for a domain with an extra . (dot) at the end.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1492
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-59

Affected Software
References

Software	From	Fixed in
mozilla / firefox	-	-
netscape / navigator	7.0.2	7.0.2.x

http://www.securityfocus.com/archive/1/319919
http://www.securityfocus.com/bid/7456
https://exchange.xforce.ibmcloud.com/vulnerabilities/11924

Vulnerability Database

289,599

CVE-2003-1492