VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 13, 2005· Updated Apr 16, 2026

CVE-2005-2269

CVE-2005-2269

Description

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as demonstrated using an XHTML document with IMG tags with custom properties ("XHTML node spoofing").

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Firefox, Mozilla, and Netscape fail to verify DOM node names within namespaces, allowing remote attackers to modify tag properties and execute arbitrary script or code.

Vulnerability

CVE-2005-2269 is an XHTML node spoofing vulnerability in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2. The browser does not properly verify the associated types of DOM node names within the context of their namespaces. This allows a remote attacker to modify certain tag properties, as demonstrated using an XHTML document with IMG tags that have custom properties. The affected software fails to enforce namespace constraints when processing DOM nodes, leading to potential script injection.

Exploitation

To exploit this vulnerability, an attacker only needs to host a specially crafted XHTML document and lure a victim to visit it with an affected browser. No special network position or authentication is required. The attacker can embed IMG tags with custom properties that, due to the namespace spoofing, are interpreted differently by the browser, enabling the modification of tag properties and potentially the execution of arbitrary script or code.

Impact

Successful exploitation allows a remote attacker to execute arbitrary script or code in the context of the victim's browser. This could lead to information disclosure, session hijacking, or other malicious actions with the privileges of the current user. The vulnerability has a CVSS score of 5.1, indicating medium severity.

Mitigation

Red Hat released updates to address this issue: for Mozilla, see RHSA-2005-601 [2]; for Firefox, see RHSA-2005-586 [3]; and for Thunderbird, see RHSA-2005-587 [4]. Users should upgrade to the fixed versions (Firefox 1.0.5, Mozilla 1.7.9, or later) as soon as possible. No workarounds are provided in the available references. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities (KEV) catalog as of the publication date.

References
  1. Support
  2. Support
  3. Support

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

41
  • Mozilla Corporation/Firefox14 versions
    cpe:2.3:a:mozilla:firefox:0.10:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:mozilla:firefox:0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.9.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:0.9:rc:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:*
    • (no CPE)range: <1.0.5
  • Mozilla Corporation/Mozilla26 versions
    cpe:2.3:a:mozilla:mozilla:1.3:*:*:*:*:*:*:*+ 25 more
    • cpe:2.3:a:mozilla:mozilla:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.4:alpha:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.5:alpha:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.5:rc1:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.5:rc2:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.6:alpha:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.6:beta:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7.8:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:alpha:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:beta:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:rc1:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:rc2:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:mozilla:1.7:rc3:*:*:*:*:*:*
    • (no CPE)range: <1.7.9
  • Netscape/Netscapellm-fuzzy
    Range: = 8.0.2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

24

News mentions

0

No linked articles in our index yet.