CVE-2006-6077

Priority
Description
The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier;
and the (2) Passcard Manager in Netscape 8.1.2 and possibly other versions,
do not properly verify that an ACTION URL in a FORM element containing a
password INPUT element matches the web site for which the user stored a
password, which allows remote attackers to obtain passwords via a password
INPUT element on a different web page located on the web site intended for
this password.
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 11:40:35 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)