CVE-2007-3511
Published Jul 3, 2007
Last updated a year ago
Overview
- Description
- The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to change field focus and copy keystrokes via the "for" attribute in a label, which bypasses the focus prevention, as demonstrated by changing focus from a textarea to a file upload field.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A383873-7B11-41FA-A64D-8526370456F0",
"versionEndIncluding": "2.0.0.7"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:1.5.0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "824369CF-00A0-434E-94BC-71CA1317012C"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:2.0.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6121F9C1-F4DF-4AAB-9E51-AC1592AA5639"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58D44634-A0B5-4F05-8983-B08D392EC742"
},
{
"criteria": "cpe:2.3:a:mozilla:firefox:2.0.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EB3AC3D3-FDD7-489F-BDCF-BDB55DF33A8B"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB0F8C75-4934-453B-B502-8D0B6E9873EA",
"versionEndIncluding": "1.1.4"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09E18FC0-0C8C-4FA1-85B9-B868D00F002F"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:*:alpha:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D62F740C-706B-4290-AD92-3ECBC3D30768"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:*:beta:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "30B95DB4-EC98-4046-A894-26CA0807456B"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55344F76-1C42-4DD8-A28B-1C33626C6FD2"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A97B6E1-EABA-4977-A3FC-64DF0392AA95"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB01A97F-ACE1-4A99-8939-6DF8FE5B5E8E"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6521C877-63C9-4B6E-9FC9-1263FFBB7950"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D949DF0A-CBC2-40E1-AE6C-60E6F58D2481"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C5CDA57-1A50-4EDB-80E2-D3EBB44EA653"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "22D33486-4956-4E2C-BA16-FA269A9D02BD"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3104343E-93B6-4D4A-BC95-ED9F7E91FB6A"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "381313EF-DF84-4F66-9962-DE8F45029D79"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0228476-14E4-443C-BBAE-2C9CD8594DC0"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A803A500-DCE2-44FC-ABEB-A90A1D39D85C"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "022274DE-5251-49C9-B6E5-1D8CEDC34E7D"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.0.99:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1E99882-786F-455F-BAC4-30716120964A"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B9F84CB7-93F7-4912-BC87-497867B96491"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "40270FBD-744A-49D9-9FFA-1DCD897210D7"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "20E01097-F60A-4FB2-BA47-84A267EE87D6"
},
{
"criteria": "cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7F65732F-317B-49A2-B9B0-FA1102B8B45C"
}
],
"operator": "OR"
}
]
}
]