CVE-2005-1155

Published: Apr 18, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

The favicon functionality in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to execute arbitrary code via a <LINK rel="icon"> tag with a javascript: URL in the href attribute, aka "Firelinking."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

oval:org.mitre.oval:def:10655

vdb-entry

signature

x_refsource_OVAL

RHSA-2005:386

vendor-advisory

x_refsource_REDHAT

14992

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.mozilla.org/show_bug.cgi?id=290036

x_refsource_CONFIRM

oval:org.mitre.oval:def:100021

vdb-entry

signature

x_refsource_OVAL

http://www.mikx.de/firelinking/

x_refsource_MISC

15495

vdb-entry

x_refsource_BID

VU#973309

third-party-advisory

x_refsource_CERT-VN

GLSA-200504-18

vendor-advisory

x_refsource_GENTOO

14938

third-party-advisory

x_refsource_SECUNIA

RHSA-2005:384

vendor-advisory

x_refsource_REDHAT

http://www.mozilla.org/security/announce/mfsa2005-37.html

x_refsource_CONFIRM

13216

vdb-entry

x_refsource_BID

RHSA-2005:383

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-1155

Description

Affected Products

References