CVE-2009-4630

Mozilla Firefox - DNS Prefetching Information Exposure via Local HTML Links

Title source: llm
STIX 2.1

Description

Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the vendor disputes the significance of this issue, stating "I don't think we necessarily need to worry about that case."

References (2)

Core 2
Core References
Issue Tracking x_refsource_misc
https://bugzilla.mozilla.org/show_bug.cgi?id=492196
Issue Tracking x_refsource_misc
https://bugzilla.mozilla.org/show_bug.cgi?id=453403

Scores

EPSS 0.0103
EPSS Percentile 59.5%

Details

CWE
CWE-200
Status published
Products (3)
mozilla/firefox
mozilla/seamonkey
mozilla/thunderbird
Published Jan 29, 2010
Tracked Since Feb 18, 2026