CVE-2005-2968

CVE Database · CVE-2005-2968

CVE-2005-2968

· N/AModified

CVSS v3.1

N/A

EPSS

10.72%

Published

Sep 20, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMozilla Browser/Firefox - Arbitrary Command Execution TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.

Affected Products (2)

mozilla · firefoxvulnerable

mozilla · mozillavulnerable

References (20)

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

http://secunia.com/advisories/16869

PatchVendor Advisory

http://secunia.com/advisories/17042

http://secunia.com/advisories/17090

http://secunia.com/advisories/17149

http://secunia.com/advisories/17263

http://secunia.com/advisories/17284

http://www.debian.org/security/2005/dsa-866

http://www.debian.org/security/2005/dsa-868

http://www.kb.cert.org/vuls/id/914681

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2005:174

KEV Catalog EPSS Scores Vendors All CVEs