CVE-2005-2704

Publication date 23 September 2005

Last updated 17 July 2025


Ubuntu priority

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
firefox 7.04 feisty
Fixed 2.0.0.6+1-0ubuntu1
6.10 edgy
Fixed 2.0.0.6+0dfsg-0ubuntu0.6.10
6.06 LTS dapper
Fixed 1.5.dfsg+1.5.0.13~prepatch070731-0ubuntu1
mozilla 7.04 feisty Not in release
6.10 edgy
Fixed 1.7.12-1.1ubuntu2
6.06 LTS dapper
Fixed 1.7.12-1.1ubuntu2
mozilla-thunderbird 7.04 feisty
Fixed 1.5.0.13-0ubuntu0.7.04
6.10 edgy
Fixed 1.5.0.13-0ubuntu0.6.10
6.06 LTS dapper
Fixed 1.5.0.13-0ubuntu0.6.06

References

Related Ubuntu Security Notices (USN)

    • USN-200-1
    • Thunderbird vulnerabilities
    • 11 October 2005

Other references