CVE-2005-2260

CVE Database · CVE-2005-2260

CVE-2005-2260

· N/AModified

CVSS v3.1

N/A

EPSS

3.26%

Published

Jul 13, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which makes it easier for remote attackers to perform dangerous actions that normally could only be performed manually by the user.

Affected Products (38)

mozilla · firefoxvulnerable

· firefox

References (20)

http://bugzilla.mozilla.org/show_bug.cgi?id=289940

http://secunia.com/advisories/16043

http://secunia.com/advisories/16044

http://secunia.com/advisories/16059

http://www.ciac.org/ciac/bulletins/p-252.shtml

http://www.debian.org/security/2005/dsa-810

http://www.mozilla.org/security/announce/mfsa2005-45.html

PatchVendor Advisory

http://www.networksecurity.fi/advisories/netscape-multiple-issues.html

http://www.novell.com/linux/security/advisories/2005_18_sr.html

http://www.novell.com/linux/security/advisories/2005_45_mozilla.html

http://www.redhat.com/support/errata/RHSA-2005-586.html

KEV Catalog EPSS Scores Vendors All CVEs