1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
PublicDate: 2005-05-02
Candidate: CVE-2005-1154
References:
http://www.ubuntu.com/usn/usn-124-1
http://www.ubuntu.com/usn/usn-149-3
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1154
Description:
Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers
to execute arbitrary script in other domains via a setter function for a
variable in the target domain, which is executed when the user visits that
domain, aka "Cross-site scripting through global scope pollution."
Ubuntu-Description:
Notes:
Bugs:
dapper_mozilla: not-affected
edgy_mozilla: not-affected
feisty_mozilla: DNE
gutsy_mozilla: DNE
devel_mozilla: DNE
upstream_mozilla:
|