CVE ID:	CAN-2005-1160
Description:	The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1160 http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml RedHat Security Advisories: RHSA-2005:383 http://www.redhat.com/support/errata/RHSA-2005-383.html RedHat Security Advisories: RHSA-2005:386 http://www.redhat.com/support/errata/RHSA-2005-386.html RedHat Security Advisories: RHSA-2005:384 http://www.redhat.com/support/errata/RHSA-2005-384.html RedHat Security Advisories: RHSA-2005:601 http://www.redhat.com/support/errata/RHSA-2005-601.html SCO Security Bulletin: SCOSA-2005.49 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt SuSE Security Announcement: SUSE-SA:2006:022 (Google Search) http://www.novell.com/linux/security/advisories/2006_04_25.html SuSE Security Announcement: SUSE-SA:2006:004 (Google Search) http://www.novell.com/linux/security/advisories/2006_04_25.html BugTraq ID: 13233 http://www.securityfocus.com/bid/13233 BugTraq ID: 15495 http://www.securityfocus.com/bid/15495 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100017 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11291 http://secunia.com/advisories/14938 http://secunia.com/advisories/14992 http://secunia.com/advisories/19823

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: