PublicDate: 2007-02-07 11:28:00 UTC
Candidate: CVE-2007-0802
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0802
Description:
 Mozilla Firefox 2.0.0.1 allows remote attackers to bypass the Phishing
 Protection mechanism by adding certain characters to the end of the domain
 name, as demonstrated by the "." and "/" characters, which is not caught by
 the Phishing List blacklist filter.
Ubuntu-Description: 
Notes: 
 kees> phishing filter bypass
 jdstrand> per Mozilla, 2.0 only
Bugs: 
 https://bugzilla.mozilla.org/show_bug.cgi?id=367538
Priority: negligible
Discovered-by:
Assigned-to:
CVSS:


upstream_firefox: released (2.0.0.12)
dapper_firefox: not-affected
edgy_firefox: needed (reached end-of-life)
feisty_firefox: needed (reached end-of-life)
gutsy_firefox: released (2.0.0.19+nobinonly1-0ubuntu0.7.10.1)
hardy_firefox: released (2.0.0.19+nobinonly1-0ubuntu0.8.04.1)
intrepid_firefox: DNE
devel_firefox: DNE