CVE Database · CVE-2005-2704
CVSS v3.1
N/A
EPSS
1.82%
Published
Sep 23, 2005
Modified
Apr 15, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface.
Affected Products (12)
References (20)
