CVE-2005-1158Mozilla Firefox vulnerability

7 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
0.9%
top 24.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mozilla Firefox
Timeline
PublishedMay 2
Latest updateMay 1

Description

Multiple "missing security checks" in Firefox before 1.0.3 allow remote attackers to inject arbitrary Javascript into privileged pages using the _search target of the Firefox sidebar.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmozilla/firefox10 versions+9

Patches

Patch: secunia.comPatch: www.redhat.comPatch: bugzilla.mozilla.org

🔴Vulnerability Details

1
GHSA
GHSA-g384-9299-vj9w: Multiple "missing security checks" in Firefox before 12022-05-01

📋Vendor Advisories

3
Ubuntu
Ubuntu 4.10 update for Firefox vulnerabilities2005-07-28
Ubuntu
Mozilla and Firefox vulnerabilities2005-05-11
Red Hat
security flaw2005-04-15

💬Community

1
Bugzilla
CVE-2005-1158 security flaw2018-08-16