Vulnerability Details CVE-2005-4809
Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla and Thunderbird, allows remote attackers to spoof the URL in the Status Bar via an A HREF tag that contains a TABLE tag that contains another A tag.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.104
EPSS Ranking 92.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=full-disclosure&m=111073068631287&w=2
- http://secunia.com/advisories/14568
- http://securitytracker.com/id?1013423
- http://www.osvdb.org/14885
- http://www.securityfocus.com/bid/12798
- http://www.vupen.com/english/advisories/2005/0260
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19540
- http://marc.info/?l=full-disclosure&m=111073068631287&w=2
- http://secunia.com/advisories/14568
- http://securitytracker.com/id?1013423
- http://www.osvdb.org/14885
- http://www.securityfocus.com/bid/12798
- http://www.vupen.com/english/advisories/2005/0260
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19540
Products affected by CVE-2005-4809
-
cpe:2.3:a:mozilla:firefox:0.10
-
cpe:2.3:a:mozilla:firefox:0.10.1
-
cpe:2.3:a:mozilla:firefox:0.8
-
cpe:2.3:a:mozilla:firefox:0.9
-
cpe:2.3:a:mozilla:firefox:0.9.1
-
cpe:2.3:a:mozilla:firefox:0.9.2
-
cpe:2.3:a:mozilla:firefox:0.9.3
-
cpe:2.3:a:mozilla:firefox:1.0
-
cpe:2.3:a:mozilla:firefox:1.0.1
-
cpe:2.3:a:mozilla:firefox:preview_release
-
cpe:2.3:a:mozilla:mozilla:1.7.3
-
cpe:2.3:a:mozilla:mozilla:1.7.4
-
cpe:2.3:a:mozilla:mozilla:1.7.5
-
cpe:2.3:a:mozilla:mozilla:1.7.6
-
cpe:2.3:a:mozilla:thunderbird:0.6
-
cpe:2.3:a:mozilla:thunderbird:0.7
-
cpe:2.3:a:mozilla:thunderbird:0.7.1
-
cpe:2.3:a:mozilla:thunderbird:0.7.2
-
cpe:2.3:a:mozilla:thunderbird:0.7.3
-
cpe:2.3:a:mozilla:thunderbird:0.8
-
cpe:2.3:a:mozilla:thunderbird:0.9
-
cpe:2.3:a:mozilla:thunderbird:1.0
-
cpe:2.3:a:mozilla:thunderbird:1.0.1