Intrusion Prevention

Mozilla.Firefox.Onkeydown.Event.Security.Bypass

Description

This indicates an attack attempt against a security bypass vulnerability in Mozilla Firefox.
The vulnerability is caused by an error when the vulnerable software handles a "for" attribute in a label. It allows a remote attacker to bypass the software's "focus prevention" via sending a crafted web page.

Affected Products

Mozilla Firefox 1.5.0.12, 2.0.0.4 and other versions before 2.0.0.8
SeaMonkey before 1.1.5

Impact

Security bypass.

Recommended Actions

Upgrade to the latest version.

CVE References

CVE-2007-3511