CVE-2005-0141

CVE Database · CVE-2005-0141

CVE-2005-0141

· N/AModified

CVSS v3.1

N/A

EPSS

1.20%

Published

May 2, 2005

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to load local files via links "with a custom getter and toString method" that are middle-clicked by the user to be opened in a new tab.

Affected Products (10)

mozilla · firefoxvulnerable

mozilla · mozillavulnerable

References (16)

http://www.mozilla.org/security/announce/mfsa2005-01.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-323.html

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-335.html

PatchVendor Advisory

http://www.securityfocus.com/bid/12407

https://bugzilla.mozilla.org/show_bug.cgi?id=249332

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/19168

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100057

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10756

KEV Catalog EPSS Scores Vendors All CVEs