Unrated severityNVD Advisory· Published Mar 3, 2007· Updated Jun 16, 2026
CVE-2007-1256
CVE-2007-1256
Description
Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to another website, a variant of CVE-2007-1092.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:*
- (no CPE)range: = 2.0.0.2
Patches
Vulnerability mechanics
References
4- marc.infonvdThird Party Advisory
- marc.infonvdThird Party Advisory
- osvdb.org/35913nvdBroken Link
- www.securityfocus.com/archive/1/461437/100/0/threadednvd
News mentions
0No linked articles in our index yet.