CVSS: 9.8EPSS: 92%CPEs: 12EXPL: 0CVE-2005-2705
https://notcve.org/view.php?id=CVE-2005-2705
23 Sep 2005 — Integer overflow in the JavaScript engine in Firefox before 1.0.7 and Mozilla Suite before 1.7.12 might allow remote attackers to execute arbitrary code. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •
CVSS: 9.1EPSS: 0%CPEs: 12EXPL: 0CVE-2005-2703
https://notcve.org/view.php?id=CVE-2005-2703
23 Sep 2005 — Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smuggling and HTTP request splitting. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2005-2704
https://notcve.org/view.php?id=CVE-2005-2704
23 Sep 2005 — Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spoof DOM objects via an XBL control that implements an internal XPCOM interface. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •
CVSS: 5.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-2707
https://notcve.org/view.php?id=CVE-2005-2707
23 Sep 2005 — Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •
CVSS: 9.1EPSS: 94%CPEs: 12EXPL: 0CVE-2005-2706
https://notcve.org/view.php?id=CVE-2005-2706
23 Sep 2005 — Firefox before 1.0.7 and Mozilla before Suite 1.7.12 allows remote attackers to execute Javascript with chrome privileges via an about: page such as about:mozilla. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •