Rapid7 Vulnerability & Exploit Database

SUSE-SA:2005:028: Mozilla Firefox, Mozilla various security problems

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE-SA:2005:028: Mozilla Firefox, Mozilla various security problems

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

04/27/2005

Created

07/25/2018

Added

11/08/2005

Modified

11/18/2015

Description

The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code by passing objects of the wrong type.

Solution(s)

References

https://attackerkb.com/topics/cve-2005-0752
12988
13211
13216
13228
13230
13231
13232
13233
15495
973309
CVE - 2005-0752
CVE - 2005-0989
CVE - 2005-1153
CVE - 2005-1154
CVE - 2005-1155
CVE - 2005-1156
CVE - 2005-1157
CVE - 2005-1158
CVE - 2005-1159
CVE - 2005-1160
OVAL100017
OVAL100018
OVAL100019
OVAL100020
OVAL100021
OVAL100022
OVAL100023
OVAL100024
OVAL100025
OVAL10279
OVAL10339
OVAL10629
OVAL10655
OVAL11230
OVAL11291
OVAL11706
OVAL11734
OVAL9584
OVAL9961
RHSA-2005:383
RHSA-2005:384
RHSA-2005:386
RHSA-2005:601
SUSE-SA:2006:004
SUSE-SA:2006:022
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100017
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100018
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100019
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100020
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100021
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100022
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100023
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100024
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100025
http://www.mikx.de/firelinking/
http://www.mikx.de/firesearching/
http://www.mozilla.org/security/announce/mfsa2005-33.html
http://www.mozilla.org/security/announce/mfsa2005-34.html
http://www.mozilla.org/security/announce/mfsa2005-35.html
http://www.mozilla.org/security/announce/mfsa2005-36.html
http://www.mozilla.org/security/announce/mfsa2005-37.html
http://www.mozilla.org/security/announce/mfsa2005-38.html
http://www.mozilla.org/security/announce/mfsa2005-39.html
http://www.mozilla.org/security/announce/mfsa2005-40.html
http://www.mozilla.org/security/announce/mfsa2005-41.html
http://www.novell.com/linux/security/advisories/2005_28_mozilla_firefox.html
https://bugzilla.mozilla.org/show_bug.cgi?id=288688
https://bugzilla.mozilla.org/show_bug.cgi?id=289074
https://bugzilla.mozilla.org/show_bug.cgi?id=289083
https://bugzilla.mozilla.org/show_bug.cgi?id=289204
https://bugzilla.mozilla.org/show_bug.cgi?id=289675
https://bugzilla.mozilla.org/show_bug.cgi?id=289961
https://bugzilla.mozilla.org/show_bug.cgi?id=290036
https://bugzilla.mozilla.org/show_bug.cgi?id=290037
https://bugzilla.mozilla.org/show_bug.cgi?id=290079
https://bugzilla.mozilla.org/show_bug.cgi?id=290162
20123
20125

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;