Back to search
CVE-2005-2263
Published: Jul 13, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers to execute a callback function in the context of another domain by forcing a page navigation after the install method has been called, which causes the callback to be run in the context of the new page and results in a same origin violation.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
DSA-810
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2005:018
vendor-advisory
x_refsource_SUSE
P-252
third-party-advisory
government-resource
x_refsource_CIAC
FLSA:160202
vendor-advisory
x_refsource_FEDORA
RHSA-2005:587
vendor-advisory
x_refsource_REDHAT
16059
third-party-advisory
x_refsource_SECUNIA
ADV-2005-1075
vdb-entry
x_refsource_VUPEN
https://bugzilla.mozilla.org/show_bug.cgi?id=293331
x_refsource_MISC
oval:org.mitre.oval:def:100010
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:100016
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2005:045
vendor-advisory
x_refsource_SUSE
oval:org.mitre.oval:def:1311
vdb-entry
signature
x_refsource_OVAL
14242
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:1281
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:11629
vdb-entry
signature
x_refsource_OVAL
RHSA-2005:586
vendor-advisory
x_refsource_REDHAT
16043
third-party-advisory
x_refsource_SECUNIA
http://www.mozilla.org/security/announce/mfsa2005-48.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now