CVE-2005-1157 (retired)

Priority
Description
Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows
remote attackers to replace existing search plugins with malicious ones
using sidebar.addSearchEngine and the same filename as the target engine,
which may not be displayed in the GUI, which could then be used to execute
malicious script, aka "Firesearching 2."
Package
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:34:31 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)