CVE-2005-1476
published 2005-05-09CVE-2005-1476: Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous…
PriorityP429medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
16.70%
96.6th percentile
Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrary code execution when combined with CVE-2005-1477.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mozilla | firefox | <= 1.0.3 | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
vendor_redhat5.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x2x8-qmfc-8j2r: The install function in Firefox 1
ghsa_unreviewed·2022-05-03·CVSS 5.1
CVE-2005-1477 [MEDIUM] GHSA-x2x8-qmfc-8j2r: The install function in Firefox 1
The install function in Firefox 1.0.3 allows remote web sites on the browser's whitelist, such as update.mozilla.org or addon.mozilla.org, to execute arbitrary Javascript with chrome privileges, leading to arbitrary code execution on the system when combined with vulnerabilities such as CVE-2005-1476, as demonstrated using a javascript: URL as the package icon and a cross-site scripting (XSS) attack on a vulnerable whitelist site.
GHSA
GHSA-364v-59j7-j8j2: Firefox 1
ghsa_unreviewed·2022-05-03·CVSS 5.1
CVE-2005-1476 [MEDIUM] GHSA-364v-59j7-j8j2: Firefox 1
Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrary code execution when combined with CVE-2005-1477.
Red Hat
security flaw
vendor_redhat·2005-05-08·CVSS 5.1
CVE-2005-1477 [MEDIUM] security flaw
security flaw
The install function in Firefox 1.0.3 allows remote web sites on the browser's whitelist, such as update.mozilla.org or addon.mozilla.org, to execute arbitrary Javascript with chrome privileges, leading to arbitrary code execution on the system when combined with vulnerabilities such as CVE-2005-1476, as demonstrated using a javascript: URL as the package icon and a cross-site scripting (XSS) attack on a vulnerable whitelist site.
Red Hat
security flaw
vendor_redhat·2005-05-08·CVSS 5.1
CVE-2005-1476 [MEDIUM] security flaw
security flaw
Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrary code execution when combined with CVE-2005-1477.
No detection rules found.
Bugzilla
CVE-2005-1477 security flaw
bugzilla·2018-08-16·CVSS 5.1
CVE-2005-1477 [MEDIUM] CVE-2005-1477 security flaw
CVE-2005-1477 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The install function in Firefox 1.0.3 allows remote web sites on the browser's whitelist, such as update.mozilla.org or addon.mozilla.org, to execute arbitrary Javascript with chrome privileges, leading to arbitrary code execution on the system when combined with vulnerabilities such as CVE-2005-1476, as demonstrated using a javascript: URL as the package icon and a cross-site scripting (XSS) attack on a vulnerable whitelist site.
Bugzilla
CVE-2005-1476 security flaw
bugzilla·2018-08-16·CVSS 5.1
CVE-2005-1476 [MEDIUM] CVE-2005-1476 security flaw
CVE-2005-1476 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrary code execution when combined with CVE-2005-1477.
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txthttp://greyhatsecurity.org/firefox.htmhttp://greyhatsecurity.org/vulntests/ffrc.htmhttp://marc.info/?l=full-disclosure&m=111553138007647&w=2http://marc.info/?l=full-disclosure&m=111556301530553&w=2http://secunia.com/advisories/15292http://securitytracker.com/id?1013913http://www.kb.cert.org/vuls/id/534710http://www.mozilla.org/security/announce/mfsa2005-42.htmlhttp://www.redhat.com/support/errata/RHSA-2005-434.htmlhttp://www.redhat.com/support/errata/RHSA-2005-435.htmlhttp://www.securityfocus.com/bid/13544http://www.securityfocus.com/bid/15495http://www.vupen.com/english/advisories/2005/0493https://bugzilla.mozilla.org/show_bug.cgi?id=292691https://bugzilla.mozilla.org/show_bug.cgi?id=293302https://exchange.xforce.ibmcloud.com/vulnerabilities/20443https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100002https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10045ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txthttp://greyhatsecurity.org/firefox.htmhttp://greyhatsecurity.org/vulntests/ffrc.htmhttp://marc.info/?l=full-disclosure&m=111553138007647&w=2http://marc.info/?l=full-disclosure&m=111556301530553&w=2http://secunia.com/advisories/15292http://securitytracker.com/id?1013913http://www.kb.cert.org/vuls/id/534710http://www.mozilla.org/security/announce/mfsa2005-42.htmlhttp://www.redhat.com/support/errata/RHSA-2005-434.htmlhttp://www.redhat.com/support/errata/RHSA-2005-435.htmlhttp://www.securityfocus.com/bid/13544http://www.securityfocus.com/bid/15495http://www.vupen.com/english/advisories/2005/0493https://bugzilla.mozilla.org/show_bug.cgi?id=292691https://bugzilla.mozilla.org/show_bug.cgi?id=293302https://exchange.xforce.ibmcloud.com/vulnerabilities/20443https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100002https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10045
2005-05-09
Published