CVE Vulnerabilities

CVE-2005-2261

Published: Jul 13, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has been disabled, which makes it easier for remote attackers to bypass such protection.

Affected Software

Name Vendor Start Version End Version
Thunderbird Mozilla 0.6 0.6
Firefox Mozilla 0.8 0.8
Thunderbird Mozilla 0.7.2 0.7.2
Thunderbird Mozilla 0.3 0.3
Mozilla Mozilla 1.7 1.7
Thunderbird Mozilla 0.2 0.2
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.5 1.5
Firefox Mozilla 1.0.2 1.0.2
Mozilla Mozilla 1.7 1.7
Firefox Mozilla 0.9.1 0.9.1
Firefox Mozilla 1.0.4 1.0.4
Mozilla Mozilla 1.7.5 1.7.5
Firefox Mozilla 0.10.1 0.10.1
Thunderbird Mozilla 1.0 1.0
Firefox Mozilla 0.9 0.9
Thunderbird Mozilla 1.0.1 1.0.1
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.4.1 1.4.1
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5 1.5
Thunderbird Mozilla 1.0.2 1.0.2
Mozilla Mozilla 1.7.7 1.7.7
Mozilla Mozilla 1.3 1.3
Firefox Mozilla 1.0 1.0
Mozilla Mozilla 1.7 1.7
Firefox Mozilla 1.0.1 1.0.1
Mozilla Mozilla 1.4 1.4
Mozilla Mozilla 1.5 1.5
Thunderbird Mozilla 0.5 0.5
Thunderbird Mozilla 1.0.4 1.0.4
Thunderbird Mozilla 0.9 0.9
Thunderbird Mozilla 1.0.3 1.0.3
Firefox Mozilla 1.0.3 1.0.3
Mozilla Mozilla 1.7.6 1.7.6
Mozilla Mozilla 1.7.1 1.7.1
Thunderbird Mozilla 0.7.3 0.7.3
Firefox Mozilla 0.9.3 0.9.3
Mozilla Mozilla 1.4 1.4
Thunderbird Mozilla 0.4 0.4
Thunderbird Mozilla 0.7 0.7
Mozilla Mozilla 1.7.8 1.7.8
Mozilla Mozilla 1.5.1 1.5.1
Firefox Mozilla 0.9.2 0.9.2
Mozilla Mozilla 1.7.2 1.7.2
Thunderbird Mozilla 0.1 0.1
Firefox Mozilla 0.9 0.9
Mozilla Mozilla 1.7 1.7
Thunderbird Mozilla 0.7.1 0.7.1
Thunderbird Mozilla 0.8 0.8
Mozilla Mozilla 1.7 1.7
Firefox Mozilla 0.10 0.10
Mozilla Mozilla 1.7.3 1.7.3
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.6 1.6

References