PT-2005-1311 · Mozilla+1 · Firefox+1

Michael Krax

Published

2005-02-07

Updated

2017-10-11

CVE-2005-0231

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Firefox version 1.0

Description The issue allows remote attackers to bypass the security model by dragging a javascript: or data: URL to a tab, due to the failure of invoking the Javascript Security Manager. This is related to a technique known as "firetabbing."

Recommendations For Firefox version 1.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0231

RHSA-2005:176

RHSA-2005_176

RHSA-2005_384

Affected Products

Firefox

Red Hat

PT-2005-1311 · Mozilla+1 · Firefox+1

CVE-2005-0231

Related Identifiers

Affected Products

References · 59