Lucene search

K

RedhatCVELIST:CVE-2005-1157

HistoryApr 18, 2005 - 4:00 a.m.

CVE-2005-1157

2005-04-1804:00:00

redhat

www.cve.org

7

AI Score

6.4

Confidence

High

EPSS

0.019

Percentile

88.5%

Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in the GUI, which could then be used to execute malicious script, aka “Firesearching 2.”

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

secunia.com/advisories/14938

secunia.com/advisories/14992

secunia.com/advisories/14996

www.mikx.de/firesearching/

www.mozilla.org/security/announce/mfsa2005-38.html

www.redhat.com/support/errata/RHSA-2005-383.html

www.redhat.com/support/errata/RHSA-2005-384.html

www.redhat.com/support/errata/RHSA-2005-386.html

www.securityfocus.com/bid/13211

www.securityfocus.com/bid/15495

bugzilla.mozilla.org/show_bug.cgi?id=290037

exchange.xforce.ibmcloud.com/vulnerabilities/20125

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9961

AI Score

6.4

Confidence

High

EPSS

0.019

Percentile

88.5%

Related for CVELIST:CVE-2005-1157

cve1 nvd1 ubuntucve1 nessus12 openvas2 redhat3 centos4 ubuntu2 suse1