← voltar
CVE-2005-2262

CVE-2005-2262

EPSS 6.5%
Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape) context menu on an image URL that is really a javascript: URL with an eval statement, aka "Firewalling."
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/1102não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://secunia.com/advisories/16043http://secunia.com/advisories/16044https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100011https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11097http://www.ciac.org/ciac/bulletins/p-252.shtmlhttp://www.mikx.de/firewalling/http://www.mozilla.org/security/announce/mfsa2005-47.htmlhttp://www.networksecurity.fi/advisories/netscape-multiple-issues.htmlhttp://www.novell.com/linux/security/advisories/2005_18_sr.htmlhttp://www.novell.com/linux/security/advisories/2005_45_mozilla.htmlhttp://www.redhat.com/support/errata/RHSA-2005-586.htmlhttp://www.securiteam.com/securitynews/5ZP0E0UGAK.html