CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0996

The child frames in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 inherit the default charset from the parent window, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.4%

CVSS Severity

CVSS v2 Score 5.8

References

Products affected by CVE-2007-0996

Mozilla » Firefox » Version: 1.5

cpe:2.3:a:mozilla:firefox:1.5
Mozilla » Firefox » Version: 1.5.0.1

cpe:2.3:a:mozilla:firefox:1.5.0.1
Mozilla » Firefox » Version: 1.5.0.2

cpe:2.3:a:mozilla:firefox:1.5.0.2
Mozilla » Firefox » Version: 1.5.0.3

cpe:2.3:a:mozilla:firefox:1.5.0.3
Mozilla » Firefox » Version: 1.5.0.4

cpe:2.3:a:mozilla:firefox:1.5.0.4
Mozilla » Firefox » Version: 1.5.0.5

cpe:2.3:a:mozilla:firefox:1.5.0.5
Mozilla » Firefox » Version: 1.5.0.6

cpe:2.3:a:mozilla:firefox:1.5.0.6
Mozilla » Firefox » Version: 1.5.0.7

cpe:2.3:a:mozilla:firefox:1.5.0.7
Mozilla » Firefox » Version: 1.5.0.8

cpe:2.3:a:mozilla:firefox:1.5.0.8
Mozilla » Firefox » Version: 1.5.0.9

cpe:2.3:a:mozilla:firefox:1.5.0.9
Mozilla » Firefox » Version: 2.0

cpe:2.3:a:mozilla:firefox:2.0
Mozilla » Firefox » Version: 2.0.0.1

cpe:2.3:a:mozilla:firefox:2.0.0.1
Mozilla » Seamonkey » Version: 1.0

cpe:2.3:a:mozilla:seamonkey:1.0
Mozilla » Seamonkey » Version: 1.0.1

cpe:2.3:a:mozilla:seamonkey:1.0.1
Mozilla » Seamonkey » Version: 1.0.2

cpe:2.3:a:mozilla:seamonkey:1.0.2
Mozilla » Seamonkey » Version: 1.0.3

cpe:2.3:a:mozilla:seamonkey:1.0.3
Mozilla » Seamonkey » Version: 1.0.4

cpe:2.3:a:mozilla:seamonkey:1.0.4
Mozilla » Seamonkey » Version: 1.0.5

cpe:2.3:a:mozilla:seamonkey:1.0.5
Mozilla » Seamonkey » Version: 1.0.6

cpe:2.3:a:mozilla:seamonkey:1.0.6
Mozilla » Seamonkey » Version: 1.0.7

cpe:2.3:a:mozilla:seamonkey:1.0.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0996

Products

Pricing

Contact Us