CVE-2005-2262
Description
Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers to execute arbitrary code by tricking the user into using the "Set As Wallpaper" (in Firefox) or "Set as Background" (in Netscape) context menu on an image URL that is really a javascript: URL with an eval statement, aka "Firewalling."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Firefox 1.0.3/1.0.4 and Netscape 8.0.2 allow code execution via 'Set As Wallpaper' on a javascript: URL.
Vulnerability
Firefox versions 1.0.3 and 1.0.4, as well as Netscape 8.0.2, mishandle the "Set As Wallpaper" (Firefox) or "Set as Background" (Netscape) context menu option when applied to a javascript: URL instead of an image. The browser evaluates the javascript: URL in the local machine zone, enabling arbitrary code execution [3].
Exploitation
An attacker must trick the user into right-clicking on a crafted element that appears as an image but is actually a javascript: URL containing malicious code. The user must then select the "Set As Wallpaper" or "Set as Background" menu item. No authentication or network access beyond delivering the malicious content is required; successful exploitation relies on user interaction.
Impact
Successful exploitation leads to arbitrary code execution on the victim's system with the privileges of the current user. This can result in full compromise of confidentiality, integrity, and availability, including installation of malware or unauthorized data access.
Mitigation
Red Hat released RHSA-2005-586 addressing this vulnerability [3]. Users should update to Firefox 1.0.6 or a later version. For Netscape, users should apply vendor patches. No workaround is available aside from avoiding the "Set As Wallpaper" option on untrusted content.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:*
- (no CPE)range: = 1.0.3 & = 1.0.4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- secunia.com/advisories/16043nvd
- secunia.com/advisories/16044nvd
- www.ciac.org/ciac/bulletins/p-252.shtmlnvd
- www.mikx.de/firewalling/nvd
- www.mozilla.org/security/announce/mfsa2005-47.htmlnvd
- www.networksecurity.fi/advisories/netscape-multiple-issues.htmlnvd
- www.novell.com/linux/security/advisories/2005_18_sr.htmlnvd
- www.novell.com/linux/security/advisories/2005_45_mozilla.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-586.htmlnvd
- www.securiteam.com/securitynews/5ZP0E0UGAK.htmlnvd
- www.securityfocus.com/bid/14242nvd
- www.vupen.com/english/advisories/2005/1075nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100011nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11097nvd
News mentions
0No linked articles in our index yet.