CVE-2005-1159

N/A Unknown

Published: May 02, 2005 Modified: April 16, 2026

Description

The native implementations of InstallTrigger and other functions in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 do not properly verify the types of objects being accessed, which causes the Javascript interpreter to continue execution at the wrong memory address, which may allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code by passing objects of the wrong type.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

Source: secalert@redhat.com

http://secunia.com/advisories/14938

Source: secalert@redhat.com

Patch Vendor Advisory

http://secunia.com/advisories/14992

Source: secalert@redhat.com

Patch Vendor Advisory

http://secunia.com/advisories/19823

Source: secalert@redhat.com

http://securitytracker.com/id?1013742

Source: secalert@redhat.com

Patch

http://securitytracker.com/id?1013743

Source: secalert@redhat.com

Patch

http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml

Source: secalert@redhat.com

Patch Vendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-40.html

Source: secalert@redhat.com

Vendor Advisory

http://www.novell.com/linux/security/advisories/2006_04_25.html

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2005-383.html

Source: secalert@redhat.com

Patch Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-384.html

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2005-386.html

Source: secalert@redhat.com

Patch Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-601.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/13232

Source: secalert@redhat.com

Patch

http://www.securityfocus.com/bid/15495

Source: secalert@redhat.com

https://bugzilla.mozilla.org/show_bug.cgi?id=290162

Source: secalert@redhat.com

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/20123

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100018

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10629

Source: secalert@redhat.com

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/14938

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://secunia.com/advisories/14992

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://secunia.com/advisories/19823

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1013742

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://securitytracker.com/id?1013743

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-40.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.novell.com/linux/security/advisories/2006_04_25.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-383.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-384.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2005-386.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-601.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/13232

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/15495

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=290162

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/20123

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100018

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10629

Source: af854a3a-2127-422b-91ae-364da2661108

38 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

3.7%

88th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

mozilla