CVE-2007-5334

NameCVE-2007-5334
DescriptionMozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the window's titlebar when displaying XUL markup language documents, which makes it easier for remote attackers to conduct phishing and spoofing attacks by setting the hidechrome attribute.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1392-1, DSA-1396-1, DSA-1401-1, DTSA-69-1, DTSA-80-1

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
iceapesourceetch1.0.11~pre071022-0etch1DSA-1401-1
iceapesourcelenny1.0.11~pre071022-0etch1+lenny1DTSA-80-1
iceapesource(unstable)1.1.5
iceweaselsourceetch2.0.0.6+2.0.0.8-0etch1DSA-1396-1
iceweaselsource(unstable)2.0.0.8-1
xulrunnersourceetch1.8.0.14~pre071019b-0etch1DSA-1392-1
xulrunnersourcelenny1.8.0.14~pre071019b-0lenny1DTSA-69-1
xulrunnersource(unstable)1.8.1.9-1

Notes

MFSA2007-33
Search for package or bug name: Reporting problems