The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code by passing objects of the wrong type.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:56
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt - | |
References | () http://secunia.com/advisories/14938 - Patch, Vendor Advisory | |
References | () http://secunia.com/advisories/14992 - Patch, Vendor Advisory | |
References | () http://secunia.com/advisories/19823 - | |
References | () http://securitytracker.com/id?1013742 - Patch | |
References | () http://securitytracker.com/id?1013743 - Patch | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml - Patch, Vendor Advisory | |
References | () http://www.mozilla.org/security/announce/mfsa2005-40.html - Vendor Advisory | |
References | () http://www.novell.com/linux/security/advisories/2006_04_25.html - | |
References | () http://www.redhat.com/support/errata/RHSA-2005-383.html - Patch, Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2005-384.html - | |
References | () http://www.redhat.com/support/errata/RHSA-2005-386.html - Patch, Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2005-601.html - | |
References | () http://www.securityfocus.com/bid/13232 - Patch | |
References | () http://www.securityfocus.com/bid/15495 - | |
References | () https://bugzilla.mozilla.org/show_bug.cgi?id=290162 - Patch | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/20123 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100018 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10629 - |
Information
Published : 2005-05-02 04:00
Updated : 2024-11-20 23:56
NVD link : CVE-2005-1159
Mitre link : CVE-2005-1159
CVE.ORG link : CVE-2005-1159
JSON object : View
Products Affected
mozilla
- firefox
- mozilla
CWE