Mozilla Firefox vulnerabilities

CVE-2005-0586 [LOW] CVE-2005-0586: Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the extensi Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the extensions of files to download via the Content-Disposition header, which could be used to trick users into downloading dangerous content.

CVE-2005-0402 [LOW] CVE-2005-0402: Firefox before 1.0.2 allows remote attackers to execute arbitrary code by tricking a user into savin Firefox before 1.0.2 allows remote attackers to execute arbitrary code by tricking a user into saving a page as a Firefox sidebar panel, then using the sidebar panel to inject Javascript into a privileged page.

CVE-2005-0578 [LOW] CVE-2005-0578: Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin tempor Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin temporary directory, which allows local users to delete arbitrary files of other users via a symlink attack on the plugtmp directory.

CVE-2005-0144 [LOW] CVE-2005-0144: Firefox before 1.0 and Mozilla before 1.7.5 display the secure site lock icon when a view-source: UR Firefox before 1.0 and Mozilla before 1.7.5 display the secure site lock icon when a view-source: URL references a secure SSL site while an insecure page is being loaded, which could facilitate phishing attacks.

CVE-2005-0584 [LOW] CVE-2005-0584: Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do no Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks.

CVE-2005-0141 [LOW] CVE-2005-0141: Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to load local files via links "wi Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to load local files via links "with a custom getter and toString method" that are middle-clicked by the user to be opened in a new tab.

CVE-2005-0232 [LOW] CVE-2005-0232: Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site then cause the user to double-click at a certain screen position, aka "Fireflashing."

CVE-2005-0752 [HIGH] CVE-2005-0752: The Plugin Finder Service (PFS) in Firefox before 1.0.3 allows remote attackers to execute arbitrary The Plugin Finder Service (PFS) in Firefox before 1.0.3 allows remote attackers to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag.

CVE-2005-0592 [HIGH] CVE-2005-0592: Heap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla bef Heap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla before 1.7.6 might allow remote attackers to cause a denial of service (crash) or execute arbitrary code via invalid sequences in a UTF8 encoded string that result in a zero length value.

CVE-2005-0587 [MEDIUM] CWE-59 CVE-2005-0587: Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitra Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file that was referenced in the first .LNK file.

CVE-2005-0585 [LOW] CVE-2005-0585: Firefox before 1.0.1 and Mozilla before 1.7.6 truncates long sub-domains or paths for display, which Firefox before 1.0.1 and Mozilla before 1.7.6 truncates long sub-domains or paths for display, which may allow remote malicious web sites to spoof legitimate sites and facilitate phishing attacks.

CVE-2005-0143 [LOW] CVE-2005-0143: Firefox before 1.0 and Mozilla before 1.7.5 display the SSL lock icon when an insecure page loads a Firefox before 1.0 and Mozilla before 1.7.5 display the SSL lock icon when an insecure page loads a binary file from a trusted site, which could facilitate phishing attacks.

CVE-2005-0593 [LOW] CVE-2005-0593: Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" lock icon via (1) a web site that does not finish loading, which shows the lock of the previous site, (2) a non-HTTP server that uses SSL, which causes the lock to be displayed when the SSL handshake is completed, or (3) a URL that generates an HTTP 204 error, wh

CVE-2005-0233 [HIGH] CVE-2005-0233: The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 al The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.

CVE-2005-0231 [LOW] CVE-2005-0231: Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: URL to a tab, which allows remote attackers to bypass the security model, aka "firetabbing."

CVE-2005-0145 [LOW] CVE-2005-0145: Firefox before 1.0 does not properly distinguish between user-generated and synthetic click events, Firefox before 1.0 does not properly distinguish between user-generated and synthetic click events, which allows remote attackers to use Javascript to bypass the file download prompt when the user uses the Alt-click feature.

CVE-2004-0904 [CRITICAL] CVE-2004-0904: Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide bitmap files that trigger heap-based buffer overflows.

CVE-2004-2225 [MEDIUM] CVE-2004-2225: Mozilla Firefox before 0.10.1 allows remote attackers to delete arbitrary files in the download dire Mozilla Firefox before 0.10.1 allows remote attackers to delete arbitrary files in the download directory via a crafted data: URI that is not properly handled when the user clicks the Save button.

CVE-2004-2227 [MEDIUM] CVE-2004-2227: Mozilla Firefox before 1.0 truncates long filenames in the file download dialog box, which makes it Mozilla Firefox before 1.0 truncates long filenames in the file download dialog box, which makes it easier for remote attackers to trick users into downloading files with dangerous extensions.

CVE-2004-1156 [MEDIUM] CVE-2004-1156: Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window injection" vulnerability.