Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026
CVE-2005-0527
CVE-2005-0527
Description
Firefox 1.0 allows remote attackers to execute arbitrary code via plugins that load "privileged content" into frames, as demonstrated using certain XUL events when a user drags a scrollbar two times, aka "Firescrolling."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*
- (no CPE)range: = 1.0
Patches
Vulnerability mechanics
References
10- www.gentoo.org/security/en/glsa/glsa-200503-10.xmlnvdPatch
- www.gentoo.org/security/en/glsa/glsa-200503-30.xmlnvdPatch
- securitytracker.com/idnvdExploit
- www.mikx.denvdExploit
- marc.infonvd
- www.mozilla.org/security/announce/mfsa2005-27.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-176.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-384.htmlnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100031nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11772nvd
News mentions
0No linked articles in our index yet.