Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2005-2268
HistoryJul 13, 2005 - 4:00 a.m.

CVE-2005-2268

2005-07-1304:00:00
redhat
web.nvd.nist.gov
52
cve-2005-2268
firefox
mozilla
dialog box
spoofing
vulnerability
nvd

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

High

EPSS

0.005

Percentile

76.6%

JSON

Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the “Dialog Origin Spoofing Vulnerability.”

Affected configurations

Nvd
Node
mozillafirefoxMatch0.8
OR
mozillafirefoxMatch0.9
OR
mozillafirefoxMatch0.9rc
OR
mozillafirefoxMatch0.9.1
OR
mozillafirefoxMatch0.9.2
OR
mozillafirefoxMatch0.9.3
OR
mozillafirefoxMatch0.10
OR
mozillafirefoxMatch0.10.1
OR
mozillafirefoxMatch1.0
OR
mozillafirefoxMatch1.0.1
OR
mozillafirefoxMatch1.0.2
OR
mozillafirefoxMatch1.0.3
OR
mozillafirefoxMatch1.0.4
OR
mozillamozillaMatch1.3
OR
mozillamozillaMatch1.4
OR
mozillamozillaMatch1.4alpha
OR
mozillamozillaMatch1.4.1
OR
mozillamozillaMatch1.5
OR
mozillamozillaMatch1.5alpha
OR
mozillamozillaMatch1.5rc1
OR
mozillamozillaMatch1.5rc2
OR
mozillamozillaMatch1.5.1
OR
mozillamozillaMatch1.6
OR
mozillamozillaMatch1.6alpha
OR
mozillamozillaMatch1.6beta
OR
mozillamozillaMatch1.7
OR
mozillamozillaMatch1.7alpha
OR
mozillamozillaMatch1.7beta
OR
mozillamozillaMatch1.7rc1
OR
mozillamozillaMatch1.7rc2
OR
mozillamozillaMatch1.7rc3
OR
mozillamozillaMatch1.7.1
OR
mozillamozillaMatch1.7.2
OR
mozillamozillaMatch1.7.3
OR
mozillamozillaMatch1.7.5
OR
mozillamozillaMatch1.7.6
OR
mozillamozillaMatch1.7.7
OR
mozillamozillaMatch1.7.8
VendorProductVersionCPE
mozillamozilla1.7cpe:/a:mozilla:mozilla:1.7:beta::
mozillamozilla1.7.5cpe:/a:mozilla:mozilla:1.7.5:::
mozillafirefox0.8cpe:/a:mozilla:firefox:0.8:::
mozillamozilla1.7cpe:/a:mozilla:mozilla:1.7:alpha::
mozillafirefox1.0.2cpe:/a:mozilla:firefox:1.0.2:::
mozillamozilla1.4cpe:/a:mozilla:mozilla:1.4:alpha::
mozillamozilla1.7.1cpe:/a:mozilla:mozilla:1.7.1:::
mozillamozilla1.5.1cpe:/a:mozilla:mozilla:1.5.1:::
mozillamozilla1.4cpe:/a:mozilla:mozilla:1.4:::
mozillamozilla1.7.8cpe:/a:mozilla:mozilla:1.7.8:::
Rows per page:
1-10 of 381

References

Related

cvelist 1
nvd 1
ubuntucve 1
debian 6
openvas 12
nessus 18
osv 3
centos 3
freebsd 1
redhat 2
suse 1
ubuntu 3
cvelist
cvelist
CVE-2005-2268
2005-07-13 04:00:00
nvd
nvd
CVE-2005-2268
2005-07-13 04:00:00
ubuntucve
ubuntucve
CVE-2005-2268
2005-07-13 00:00:00
debian
debian
[SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
2005-09-13 12:55:40
[SECURITY] [DSA 779-2] New Mozilla Firefox packages fix several vulnerabilities
2005-09-01 14:06:47
[SECURITY] [DSA 779-1] New Mozilla Firefox packages fix several vulnerabilities
2005-08-20 13:35:34
openvas
openvas
Debian Security Advisory DSA 810-1 (mozilla)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-810-1)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-779-2)
2008-01-17 00:00:00
nessus
nessus
Mozilla Browser < 1.7.9 Multiple Vulnerabilities
2005-07-13 00:00:00
Fedora Core 3 : mozilla-1.7.10-1.3.1 (2005-616)
2005-07-22 00:00:00
RHEL 4 : mozilla (RHSA-2005:587)
2005-07-22 00:00:00
osv
osv
mozilla - several
2005-09-13 00:00:00
mozilla-firefox - several
2005-08-20 00:00:00
mozilla-firefox - several
2005-08-20 00:00:00
centos
centos
devhelp, mozilla security update
2005-07-22 15:23:45
galeon, mozilla security update
2005-07-25 01:17:58
firefox security update
2005-07-21 21:28:02
freebsd
freebsd
firefox & mozilla -- multiple vulnerabilities
2005-07-12 00:00:00
redhat
redhat
(RHSA-2005:587) mozilla security update
2005-07-22 00:00:00
(RHSA-2005:586) firefox security update
2005-07-21 00:00:00
suse
suse
information leak in mozilla,MozillaFirefox,epiphany,galeon
2005-08-11 15:28:02
ubuntu
ubuntu
Firefox vulnerabilities
2005-07-21 00:00:00
Mozilla vulnerabilities
2005-07-27 00:00:00
Ubuntu 4.10 update for Firefox vulnerabilities
2005-07-28 00:00:00

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

High

EPSS

0.005

Percentile

76.6%

JSON
Related for CVE-2005-2268
cvelist1nvd1ubuntucve1debian6openvas12nessus18osv3centos3freebsd1redhat2suse1ubuntu3