Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-3004


Vulnerability Score 4.3 4.3
CVE Id CVE-2009-3004
Last Modified 31 Aug 2009 12:00:00
Published 28 Aug 2009 11:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Avant Browser 11.7 Builds 35 and 36 allows remote attackers to spoof the address bar, via with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demonstrated by a visit to an attacker-controlled web page, which triggers a spoofed login form for the site containing that page. NOTE: a related attack was reported in which an arbitrary file: URL is shown.

Vulnerable Systems


  • Avant Force Avant Browser 11.7



Last Updated: 27 May 2016 10:51:06