Sign in
CVE-2009-4630
CVE-2009-4630
Description
Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the vendor disputes the significance of this issue, stating "I don't think we necessarily need to worry about that case."
Impact
CVSS v2 : 5 MEDIUM
Type
CWE-200
Attack Vector
CVSSv2 Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N
Quick links
CVE
,
NVD
,
CERT
,
Metasploit
,
Exploit-db
,
Fulldisc
,
Bugtraq
,
Microsoft
,
Red Hat
,
Debian
, GitHub
code
/
issues
,
Google
References
https://bugzilla.mozilla.org/show_bug.cgi?id=453403
https://bugzilla.mozilla.org/show_bug.cgi?id=492196
FAQ
Terms of service
Privacy policy
