Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1158

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-1158
Last Modified 21 Aug 2010 12:27:58
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1158

Summary

Multiple "missing security checks" in Firefox before 1.0.3 allow remote attackers to inject arbitrary Javascript into privileged pages using the _search target of the Firefox sidebar.

Vulnerable Systems

Application

  • Mozilla Firefox 0.10

  • Mozilla Firefox 0.10.1

  • Mozilla Firefox 0.8

  • Mozilla Firefox 0.9

  • Mozilla Firefox 0.9.1

  • Mozilla Firefox 0.9.2

  • Mozilla Firefox 0.9.3

  • Mozilla Firefox 1.0

  • Mozilla Firefox 1.0.1

  • Mozilla Firefox 1.0.2


References

CONFIRM - https://bugzilla.mozilla.org/show_bug.cgi?id=290079

REDHAT - RHSA-2005:383

SECUNIA - 14938

CONFIRM - http://www.mozilla.org/security/announce/mfsa2005-39.html

BID - 13231


Last Updated: 27 May 2016 10:40:04