Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0527

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-0527
Last Modified 21 Aug 2010 12:26:18
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-0527

Summary

Firefox 1.0 allows remote attackers to execute arbitrary code via plugins that load "privileged content" into frames, as demonstrated using certain XUL events when a user drags a scrollbar two times, aka "Firescrolling."

Vulnerable Systems

Application

  • Mozilla Firefox 1.0


References

GENTOO - GLSA-200503-30

GENTOO - GLSA-200503-10

CONFIRM - http://www.mozilla.org/security/announce/mfsa2005-27.html

MISC - http://www.mikx.de/?p=11

SECTRACK - 1013301

BUGTRAQ - 20050225 Firescrolling [Firefox 1.0]

REDHAT - RHSA-2005:384

REDHAT - RHSA-2005:176


Last Updated: 27 May 2016 10:39:50