CVE-2008-0367

Publication date 19 January 2008

Last updated 24 July 2024

Description

Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when prompting for HTTP Basic Authentication, displays the site requesting the authentication after the Realm text, which might make it easier for remote HTTP servers to conduct phishing and spoofing attacks.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not affected
	7.10 gutsy	Fixed
	7.04 feisty	Ignored end of life, was needed
	6.10 edgy	Ignored end of life, was needed
	6.06 LTS dapper	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2008-0367