CVE-2005-0589 — Mozilla Firefox vulnerability

5 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 29.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox

Timeline

PublishedMay 2

Latest updateMay 1

Description

The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmozilla/firefox8 versions+7

Patches

Patch: www.gentoo.org ↗Patch: bugzilla.mozilla.org ↗Patch: www.gentoo.org ↗

🔴Vulnerability Details

GHSA

GHSA-g4f8-m87g-59mw: The Form Fill feature in Firefox before 1↗2022-05-01

▶

📋Vendor Advisories

Ubuntu

Ubuntu 4.10 update for Firefox vulnerabilities↗2005-07-28

▶

Red Hat

security flaw↗2005-02-24

▶

💬Community

Bugzilla

CVE-2005-0589 security flaw↗2018-08-16

▶