CVE-2005-2261
Published: 13 July 2005
Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has been disabled, which makes it easier for remote attackers to bypass such protection.
Priority
Status
Package | Release | Status |
---|---|---|
mozilla Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
dapper |
Released
(1.7.12-1.1ubuntu2)
|
|
edgy |
Released
(1.7.12-1.1ubuntu2)
|
|
feisty |
Does not exist
|
|
mozilla-thunderbird Launchpad, Ubuntu, Debian |
dapper |
Released
(1.5.0.13-0ubuntu0.6.06)
|
edgy |
Released
(1.5.0.13-0ubuntu0.6.10)
|
|
feisty |
Released
(1.5.0.13-0ubuntu0.7.04)
|
|
upstream |
Needs triage
|