NVD

Id
67268  
Name
CVE-2005-1531  
Description
Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly implement certain security checks for script injection, which allows remote attackers to execute script via "Wrapped" javascript: URLs, as demonstrated using (1) a javascript: URL in a view-source: URL, (2) a javascript: URL in a jar: URL, or (3) "a nested variant."  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2005-05-12  
Modified Date
2011-03-07  
Seq
2005-1531  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
348840 67268 CVE-2005-1531 SCOSA-2005.49  View
348841 67268 CVE-2005-1531 oval:org.mitre.oval:def:100015  View
348842 67268 CVE-2005-1531 oval:org.mitre.oval:def:10351  View
348843 67268 CVE-2005-1531 1013962  View
348844 67268 CVE-2005-1531 1013963  View
348845 67268 CVE-2005-1531 http://www.mozilla.org/security/announce/mfsa2005-43.html  View
348846 67268 CVE-2005-1531 RHSA-2005:434  View
348847 67268 CVE-2005-1531 RHSA-2005:435  View
348848 67268 CVE-2005-1531 13641  View
348849 67268 CVE-2005-1531 15495  View
348850 67268 CVE-2005-1531 ADV-2005-0530  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62123 JVNDB-2005-000325 Mozilla Firefox の javascript 形式の URL におけるクロスサイトスクリプティングの脆弱性 ------------ CVE-2005-1531 12735 CVE-2005-1531 67268 7.5 http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000325.html 2005-05-12 2007-04-01 View