CVE ID:	CVE-2005-1156
Description:	Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to execute arbitrary script and code via a new search plugin using sidebar.addSearchEngine, aka "Firesearching 1."
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1156 http://www.mikx.de/firesearching/ http://www.gentoo.org/security/en/glsa/glsa-200504-18.xml RedHat Security Advisories: RHSA-2005:383 http://www.redhat.com/support/errata/RHSA-2005-383.html RedHat Security Advisories: RHSA-2005:386 http://www.redhat.com/support/errata/RHSA-2005-386.html RedHat Security Advisories: RHSA-2005:384 http://www.redhat.com/support/errata/RHSA-2005-384.html SCO Security Bulletin: SCOSA-2005.49 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt BugTraq ID: 13211 http://www.securityfocus.com/bid/13211 BugTraq ID: 15495 http://www.securityfocus.com/bid/15495 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:100020 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11230 http://securitytracker.com/id?1013745 http://secunia.com/advisories/14938 http://secunia.com/advisories/14992 http://secunia.com/advisories/14996 XForce ISS Database: mozilla-plugin-xss(20125) http://xforce.iss.net/xforce/xfdb/20125

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: