Cross-domain vulnerability in Fast Browser Pro 8.1 allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker's originating site that specifies a Location HTTP header that references the target site, which then makes that content available through the outerHTML attribute of the object, a similar vulnerability to CVE-2006-3280.
References
Configurations
History
21 Nov 2024, 00:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://pridels0.blogspot.com/2006/06/multiple-browsers-information.html - |
Information
Published : 2007-02-09 01:28
Updated : 2024-11-21 00:24
NVD link : CVE-2006-6991
Mitre link : CVE-2006-6991
CVE.ORG link : CVE-2006-6991
JSON object : View
Products Affected
fast_browser
- fast_browser
CWE