CVE-2005-0752

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 1.0.3

Description The issue allows remote attackers to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag. This is related to the Plugin Finder Service (PFS) in Firefox.

Recommendations For versions prior to 1.0.3, update to version 1.0.3 or later to resolve the issue. As a temporary workaround, consider disabling the execution of javascript: URLs in the PLUGINSPAGE attribute of an EMBED tag until a patch is applied.