JVN/CVE Demo: Cveinfos

CVE

Id: 12361
CVE No.: CVE-2005-1155
Status: Candidate
Description: The favicon functionality in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to execute arbitrary code via a <LINK rel="icon"> tag with a javascript: URL in the href attribute, aka "Firelinking."
Phase: Assigned (20050418)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
88648	12361	CVE-2005-1155	MISC:http://www.mikx.de/firelinking/	View
88649	12361	CVE-2005-1155	CONFIRM:http://www.mozilla.org/security/announce/mfsa2005-37.html	View
88650	12361	CVE-2005-1155	CONFIRM:https://bugzilla.mozilla.org/show_bug.cgi?id=290036	View
88651	12361	CVE-2005-1155	GENTOO:GLSA-200504-18	View
88652	12361	CVE-2005-1155	URL:http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml	View
88653	12361	CVE-2005-1155	REDHAT:RHSA-2005:383	View
88654	12361	CVE-2005-1155	URL:http://www.redhat.com/support/errata/RHSA-2005-383.html	View
88655	12361	CVE-2005-1155	REDHAT:RHSA-2005:386	View
88656	12361	CVE-2005-1155	URL:http://www.redhat.com/support/errata/RHSA-2005-386.html	View
88657	12361	CVE-2005-1155	REDHAT:RHSA-2005:384	View
88658	12361	CVE-2005-1155	URL:http://www.redhat.com/support/errata/RHSA-2005-384.html	View
88659	12361	CVE-2005-1155	SCO:SCOSA-2005.49	View
88660	12361	CVE-2005-1155	URL:ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt	View
88661	12361	CVE-2005-1155	CERT-VN:VU#973309	View
88662	12361	CVE-2005-1155	URL:http://www.kb.cert.org/vuls/id/973309	View
88663	12361	CVE-2005-1155	BID:15495	View
88664	12361	CVE-2005-1155	URL:http://www.securityfocus.com/bid/15495	View
88665	12361	CVE-2005-1155	BID:13216	View
88666	12361	CVE-2005-1155	URL:http://www.securityfocus.com/bid/13216	View
88667	12361	CVE-2005-1155	OVAL:oval:org.mitre.oval:def:100021	View
88668	12361	CVE-2005-1155	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100021	View
88669	12361	CVE-2005-1155	OVAL:oval:org.mitre.oval:def:10655	View
88670	12361	CVE-2005-1155	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10655	View
88671	12361	CVE-2005-1155	SECUNIA:14938	View
88672	12361	CVE-2005-1155	URL:http://secunia.com/advisories/14938	View
88673	12361	CVE-2005-1155	SECUNIA:14992	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
62016	JVNDB-2005-000218	Mozilla 製品における検索プラグインを同一名の不正なプラグインに置き換えられる脆弱性	------------	CVE-2005-1157	12361	7.5		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000218.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.28 MB
View render complete	2.72 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.67
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	493.23
Event: Controller.beforeRender	4.61
» Processing toolbar data	4.51
Rendering View	10.86
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	9.63
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.79
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/12361
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/12361
Remote Port	5656
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.31
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.229.199
Http Via	1.1 squid-proxy-5b5d847c96-v4lkv (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.31
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.31
Unique Id	aKFhagQOfE8Vwp_5jubngAAAAHA
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.31
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.31
Redirect Unique Id	aKFhagQOfE8Vwp_5jubngAAAAHA
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.31
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.31
Redirect Redirect Unique Id	aKFhagQOfE8Vwp_5jubngAAAAHA
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1755406698.7059
Request Time	1755406698

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files