CVE-2005-2262

N/A Unknown

Published: July 13, 2005 Modified: April 16, 2026

Description

Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape) context menu on an image URL that is really a javascript: URL with an eval statement, aka "Firewalling."

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/16043

Source: secalert@redhat.com

http://secunia.com/advisories/16044

Source: secalert@redhat.com

http://www.ciac.org/ciac/bulletins/p-252.shtml

Source: secalert@redhat.com

http://www.mikx.de/firewalling/

Source: secalert@redhat.com

http://www.mozilla.org/security/announce/mfsa2005-47.html

Source: secalert@redhat.com

http://www.networksecurity.fi/advisories/netscape-multiple-issues.html

Source: secalert@redhat.com

http://www.novell.com/linux/security/advisories/2005_18_sr.html

Source: secalert@redhat.com

http://www.novell.com/linux/security/advisories/2005_45_mozilla.html

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2005-586.html

Source: secalert@redhat.com

http://www.securiteam.com/securitynews/5ZP0E0UGAK.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/14242

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2005/1075

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100011

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11097

Source: secalert@redhat.com

http://secunia.com/advisories/16043

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/16044

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ciac.org/ciac/bulletins/p-252.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mikx.de/firewalling/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mozilla.org/security/announce/mfsa2005-47.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.networksecurity.fi/advisories/netscape-multiple-issues.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2005_18_sr.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2005_45_mozilla.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-586.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securiteam.com/securitynews/5ZP0E0UGAK.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/14242

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2005/1075

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100011

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11097

Source: af854a3a-2127-422b-91ae-364da2661108

28 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

16.0%

95th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

mozilla