CVE		CVE-2004-0867
Status		Candidate
Description		Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.
Phase		Assigned (14.09.2004)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-0867
References		BID : 11186
		BUGTRAQ : 20040916 wp-04-0001: Multiple Browser Cookie Injection Vulnerabilities
		CONFIRM : https://bugzilla.mozilla.org/show_bug.cgi?id=252342
		SECTRACK : 1011331
		SECUNIA : 12580
		XF : web-browser-session-hijack(17415)