QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2005-2269

Back to search

CVE-2005-2269

Published: Jul 13, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as demonstrated using an XHTML document with IMG tags with custom properties ("XHTML node spoofing").

VendorProductVersions

n/a

n/a

affected
n/a

References

DSA-810
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2005:018
vendor-advisory
x_refsource_SUSE
P-252
third-party-advisory
government-resource
x_refsource_CIAC
FLSA:160202
vendor-advisory
x_refsource_FEDORA
19823
third-party-advisory
x_refsource_SECUNIA
RHSA-2005:587
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:100005
vdb-entry
signature
x_refsource_OVAL
16059
third-party-advisory
x_refsource_SECUNIA
16044
third-party-advisory
x_refsource_SECUNIA
ADV-2005-1075
vdb-entry
x_refsource_VUPEN
RHSA-2005:601
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:100004
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:729
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2005:045
vendor-advisory
x_refsource_SUSE
14242
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:100011
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:9777
vdb-entry
signature
x_refsource_OVAL
RHSA-2005:586
vendor-advisory
x_refsource_REDHAT
16043
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:022
vendor-advisory
x_refsource_SUSE
oval:org.mitre.oval:def:1258
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now