Vulnerability Description
Cross-site scripting (XSS) vulnerability in the sidebar HTML page in the MouseoverDictionary before 0.6.2 extension for Mozilla Firefox allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Itirou Maruta | Mouseoverdictionary | <= 0.6 |
| Mozilla | Firefox | 2.0 |
Related Weaknesses (CWE)
References
- http://jvn.jp/jp/JVN%2363304072/index.html
- http://maru.bonyari.jp/mouseoverdictionary/
- http://osvdb.org/40475
- http://secunia.com/advisories/27195PatchVendor Advisory
- http://www.securityfocus.com/bid/26053
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37184
- http://jvn.jp/jp/JVN%2363304072/index.html
- http://maru.bonyari.jp/mouseoverdictionary/
- http://osvdb.org/40475
- http://secunia.com/advisories/27195PatchVendor Advisory
- http://www.securityfocus.com/bid/26053
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37184
FAQ
What is CVE-2007-5459?
CVE-2007-5459 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the sidebar HTML page in the MouseoverDictionary before 0.6.2 extension for Mozilla Firefox allows remote attackers to inject arbitrary web script or HTML v...
How severe is CVE-2007-5459?
CVE-2007-5459 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5459?
Check the references section above for vendor advisories and patch information. Affected products include: Itirou Maruta Mouseoverdictionary, Mozilla Firefox.