Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2005-2968
HistorySep 20, 2005 - 12:00 a.m.

CVE-2005-2968

2005-09-2000:00:00
ubuntu.com
ubuntu.com
12

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.962 High

EPSS

Percentile

99.5%

JSON

Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary
commands via shell metacharacters in a URL that is provided to the browser
on the command line, which is sent unfiltered to bash.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchfirefox< 1.5.dfsg+1.5.0.13~prepatch070731-0ubuntu1UNKNOWN
ubuntu6.10noarchfirefox< 2.0.0.6+0dfsg-0ubuntu0.6.10UNKNOWN
ubuntu7.04noarchfirefox< 2.0.0.6+1-0ubuntu1UNKNOWN
ubuntu6.06noarchmozilla< 1.7.12-1.1ubuntu2UNKNOWN
ubuntu6.10noarchmozilla< 1.7.12-1.1ubuntu2UNKNOWN

Related

checkpoint_advisories 1
openvas 6
cvelist 1
freebsd 1
ubuntu 2
nessus 15
cve 1
securityvulns 1
cert 1
redhat 2
centos 2
debian 4
osv 2
checkpoint_advisories
checkpoint_advisories
Mail Content Firefox Command Line URL Shell Command Injection (CVE-2005-2968)
2009-10-22 00:00:00
openvas
openvas
FreeBSD Ports: firefox
2008-09-04 00:00:00
FreeBSD Ports: firefox
2008-09-04 00:00:00
Debian: Security Advisory (DSA-868-1)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2005-2968
2005-09-20 04:00:00
freebsd
freebsd
firefox & mozilla -- command line URL shell command injection
2005-09-06 00:00:00
ubuntu
ubuntu
Mozilla and Firefox vulnerabilities
2005-09-23 00:00:00
Thunderbird vulnerabilities
2005-10-11 00:00:00
nessus
nessus
FreeBSD : firefox & mozilla -- command line URL shell command injection (2e28cefb-2aee-11da-a263-0001020eed82)
2006-05-13 00:00:00
CentOS 4 : thunderbird (CESA-2005:791)
2006-07-05 00:00:00
Fedora Core 3 : thunderbird-1.0.7-1.1.fc3 (2005-962)
2005-10-05 00:00:00
cve
cve
CVE-2005-2968
2005-09-20 22:03:00
securityvulns
securityvulns
Firefox Command Line URL Shell Command Injection
2005-09-21 00:00:00
cert
cert
Mozilla Firefox fails to properly sanitize user-supplied URIs via shell script
2005-09-22 00:00:00
redhat
redhat
(RHSA-2005:791) thunderbird security update
2005-10-06 00:00:00
(RHSA-2005:785) firefox security update
2005-09-22 00:00:00
centos
centos
thunderbird security update
2005-10-06 23:10:29
firefox security update
2005-09-22 22:46:14
debian
debian
[SECURITY] [DSA 866-1] New Mozilla packages fix several vulnerabilities
2005-10-20 05:44:19
[SECURITY] [DSA 868-1] New Mozilla Thunderbird packages fix several vulnerabilities
2005-10-20 15:11:33
[SECURITY] [DSA 868-1] New Mozilla Thunderbird packages fix several vulnerabilities
2005-10-20 00:00:00
osv
osv
mozilla-thunderbird - several
2005-10-20 00:00:00
mozilla - several
2005-10-20 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.962 High

EPSS

Percentile

99.5%

JSON
Related for UB:CVE-2005-2968
checkpoint_advisories1openvas6cvelist1freebsd1ubuntu2nessus15cve1securityvulns1cert1redhat2centos2debian4osv2