CVE-2005-1157

CVE Database · CVE-2005-1157

CVE-2005-1157

· N/AModified

CVSS v3.1

N/A

EPSS

2.46%

Published

May 2, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in the GUI, which could then be used to execute malicious script, aka "Firesearching 2."

Affected Products (35)

mozilla · firefoxvulnerable

· firefox

References (20)

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

http://secunia.com/advisories/14938

PatchVendor Advisory

http://secunia.com/advisories/14992

PatchVendor Advisory

http://secunia.com/advisories/14996

PatchVendor Advisory

http://www.mikx.de/firesearching/

Exploit

http://www.mozilla.org/security/announce/mfsa2005-38.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-383.html

KEV Catalog EPSS Scores Vendors All CVEs