cbcvebase.
CVE-2005-1156
published 2005-05-02

CVE-2005-1156: Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to execute arbitrary script and code via a new search plugin using…

PriorityP333high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.34%
81.5th percentile
Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to execute arbitrary script and code via a new search plugin using sidebar.addSearchEngine, aka "Firesearching 1."

Affected

23 ranges
VendorProductVersion rangeFixed in
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillafirefox
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
mozillamozilla
netscapenavigator

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.