Mozilla · Firefox · CVE-2005-3089
**Name of the Vulnerable Software and Affected Versions**
Firefox version 1.0.6
**Description**
The issue allows attackers to cause a denial of service, resulting in a crash, via a Proxy Auto-Config (PAC) script that utilizes an eval statement. It is unclear whether an untrusted party can trigger this issue.
**Recommendations**
For Firefox version 1.0.6, as a temporary workaround, consider disabling the use of Proxy Auto-Config (PAC) scripts that utilize eval statements until a patch is available.