PublicDate: 2005-07-13 04:00:00 UTC
Candidate: CVE-2005-2261
References:
 https://ubuntu.com/security/notices/USN-155-1
 https://ubuntu.com/security/notices/USN-157-1
 https://ubuntu.com/security/notices/USN-149-3
 https://ubuntu.com/security/notices/USN-149-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2261
Description:
 Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9,
 Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has
 been disabled, which makes it easier for remote attackers to bypass such
 protection.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_mozilla-thunderbird: released (1.5.0.13-0ubuntu0.6.06)
edgy_mozilla-thunderbird: released (1.5.0.13-0ubuntu0.6.10)
feisty_mozilla-thunderbird: released (1.5.0.13-0ubuntu0.7.04)
devel_mozilla-thunderbird: DNE
dapper_mozilla: released (1.7.12-1.1ubuntu2)
edgy_mozilla: released (1.7.12-1.1ubuntu2)
feisty_mozilla: DNE
devel_mozilla: DNE
upstream_mozilla: needs-triage
upstream_mozilla-thunderbird: needs-triage