Vulnerability Details CVE-2005-0589
The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml
- http://www.mozilla.org/security/announce/mfsa2005-19.html
- http://www.redhat.com/support/errata/RHSA-2005-176.html
- http://www.securityfocus.com/bid/12659
- https://bugzilla.mozilla.org/show_bug.cgi?id=270697
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100039
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10825
- http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml
- http://www.mozilla.org/security/announce/mfsa2005-19.html
- http://www.redhat.com/support/errata/RHSA-2005-176.html
- http://www.securityfocus.com/bid/12659
- https://bugzilla.mozilla.org/show_bug.cgi?id=270697
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100039
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10825
Products affected by CVE-2005-0589
-
cpe:2.3:a:mozilla:firefox:0.10
-
cpe:2.3:a:mozilla:firefox:0.10.1
-
cpe:2.3:a:mozilla:firefox:0.8
-
cpe:2.3:a:mozilla:firefox:0.9
-
cpe:2.3:a:mozilla:firefox:0.9.1
-
cpe:2.3:a:mozilla:firefox:0.9.2
-
cpe:2.3:a:mozilla:firefox:0.9.3
-
cpe:2.3:a:mozilla:firefox:1.0