5.1

CVE-2005-2262

EPSS 16%
Published 13.07.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source secalert@redhat.com
Teams watchlist Login
Open Login

Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape) context menu on an image URL that is really a javascript: URL with an eval statement, aka "Firewalling."

Affected products Warnungen 0 Metrics 2 CWE 0 References 17

Data is provided by the National Vulnerability Database (NVD)

Mozilla ≫ Firefox Version1.0.3

Mozilla ≫ Firefox Version1.0.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	16%	0.942

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

http://www.novell.com/linux/security/advisories/2005_18_sr.html

http://www.novell.com/linux/security/advisories/2005_45_mozilla.html

http://www.redhat.com/support/errata/RHSA-2005-586.html

http://www.securityfocus.com/bid/14242

http://www.vupen.com/english/advisories/2005/1075

http://secunia.com/advisories/16043

http://secunia.com/advisories/16044

http://www.ciac.org/ciac/bulletins/p-252.shtml

http://www.networksecurity.fi/advisories/netscape-multiple-issues.html

http://www.mikx.de/firewalling/

http://www.mozilla.org/security/announce/mfsa2005-47.html

http://www.securiteam.com/securitynews/5ZP0E0UGAK.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100011

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11097

https://nvd.nist.gov/vuln/detail/CVE-2005-2262

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2262

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2262

EUVD