Lucene search

[email protected]NVD:CVE-2005-0402

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0402

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

High

EPSS

0.891

Percentile

98.7%

JSON

Firefox before 1.0.2 allows remote attackers to execute arbitrary code by tricking a user into saving a page as a Firefox sidebar panel, then using the sidebar panel to inject Javascript into a privileged page.

Affected configurations

Nvd

Node

mozillafirefoxMatch0.8

mozillafirefoxMatch0.9

mozillafirefoxMatch0.9rc

mozillafirefoxMatch0.9.1

mozillafirefoxMatch0.9.2

mozillafirefoxMatch0.9.3

mozillafirefoxMatch0.10

mozillafirefoxMatch0.10.1

mozillafirefoxMatch1.0

mozillafirefoxMatch1.0.1

mozillafirefoxMatch1.0.2

References

secunia.com/advisories/14654

www.mozilla.org/security/announce/mfsa2005-31.html

www.redhat.com/support/errata/RHSA-2005-336.html

www.vupen.com/english/advisories/2005/0296

bugzilla.mozilla.org/show_bug.cgi?id=284627

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100027

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11868

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

High

EPSS

0.891

Percentile

98.7%

JSON

Related for NVD:CVE-2005-0402

openvas5 checkpoint_advisories2 nessus6 cvelist1 freebsd1 ubuntucve1 mozilla1 cve1 gentoo1 redhat1 ubuntu1