Back to search
CVE-2005-2267
Published: Jul 13, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is run in the context of the previous page, and may lead to code execution if the standalone application loads a privileged chrome: URL.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SR:2005:018
vendor-advisory
x_refsource_SUSE
P-252
third-party-advisory
government-resource
x_refsource_CIAC
1014469
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:1172
vdb-entry
signature
x_refsource_OVAL
FLSA:160202
vendor-advisory
x_refsource_FEDORA
RHSA-2005:587
vendor-advisory
x_refsource_REDHAT
http://www.mozilla.org/security/announce/mfsa2005-53.html
x_refsource_CONFIRM
ADV-2005-1075
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:11334
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:100006
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2005:045
vendor-advisory
x_refsource_SUSE
14242
vdb-entry
x_refsource_BID
https://bugzilla.mozilla.org/show_bug.cgi?id=298255
x_refsource_MISC
RHSA-2005:586
vendor-advisory
x_refsource_REDHAT
16043
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:1073
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now