Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in the GUI, which could then be used to execute malicious script, aka “Firesearching 2.”
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
secunia.com/advisories/14938
secunia.com/advisories/14992
secunia.com/advisories/14996
www.mikx.de/firesearching/
www.mozilla.org/security/announce/mfsa2005-38.html
www.redhat.com/support/errata/RHSA-2005-383.html
www.redhat.com/support/errata/RHSA-2005-384.html
www.redhat.com/support/errata/RHSA-2005-386.html
www.securityfocus.com/bid/13211
www.securityfocus.com/bid/15495
bugzilla.mozilla.org/show_bug.cgi?id=290037
exchange.xforce.ibmcloud.com/vulnerabilities/20125
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9961