What is CVE-2005-2968?

CVE-2005-2968 is a vulnerability in Mozilla Firefox. Published 2005-09-20.

Is CVE-2005-2968 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Mozilla Firefox

CVE-2005-2968

Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.

EPSS: 0.107 (95.3th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox — versions 1.0.6
Mozilla — versions 1.7.10
N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

secalert@redhat.com (vendor-advisory, x_refsource_DEBIAN)
secalert@redhat.com (vdb-entry, x_refsource_VUPEN)
secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
secalert@redhat.com (x_refsource_UBUNTU, vendor-advisory)
secalert@redhat.com (Patch, x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_UBUNTU, vendor-advisory)
secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2005-2968?: CVE-2005-2968 is a vulnerability in Mozilla Firefox. Published 2005-09-20.
Is CVE-2005-2968 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.