CVE Vulnerabilities

CVE-2005-2265

Published: Jul 13, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla 0.8 0.8
Firefox Mozilla 0.9 0.9
Firefox Mozilla 0.9 0.9
Firefox Mozilla 0.9.1 0.9.1
Firefox Mozilla 0.9.2 0.9.2
Firefox Mozilla 0.9.3 0.9.3
Firefox Mozilla 0.10 0.10
Firefox Mozilla 0.10.1 0.10.1
Firefox Mozilla 1.0 1.0
Firefox Mozilla 1.0.1 1.0.1
Firefox Mozilla 1.0.2 1.0.2
Firefox Mozilla 1.0.3 1.0.3
Firefox Mozilla 1.0.4 1.0.4
Mozilla Mozilla 1.3 1.3
Mozilla Mozilla 1.4 1.4
Mozilla Mozilla 1.4 1.4
Mozilla Mozilla 1.4.1 1.4.1
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5.1 1.5.1
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7.1 1.7.1
Mozilla Mozilla 1.7.2 1.7.2
Mozilla Mozilla 1.7.3 1.7.3
Mozilla Mozilla 1.7.5 1.7.5
Mozilla Mozilla 1.7.6 1.7.6
Mozilla Mozilla 1.7.7 1.7.7
Mozilla Mozilla 1.7.8 1.7.8
Red Hat Enterprise Linux 4 RedHat firefox-0:1.0.6-1.4.1 *
Red Hat Enterprise Linux 4 RedHat devhelp-0:0.9.2-2.4.6 *
Red Hat Enterprise Linux 4 RedHat thunderbird-0:1.0.6-1.4.1 *
Mozilla Ubuntu dapper *
Mozilla Ubuntu edgy *
Mozilla-thunderbird Ubuntu dapper *
Mozilla-thunderbird Ubuntu edgy *
Mozilla-thunderbird Ubuntu feisty *

References