Unrated severityNVD Advisory· Published Sep 20, 2005· Updated Apr 16, 2026
CVE-2005-2968
CVE-2005-2968
Description
Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.
Affected products
2- cpe:2.3:a:mozilla:firefox:1.0.6:*:linux:*:*:*:*:*
- cpe:2.3:a:mozilla:mozilla:1.7.10:*:linux:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
23- secunia.com/advisories/16869nvdPatchVendor Advisory
- bugzilla.mozilla.org/show_bug.cginvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/914681nvdUS Government Resource
- ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txtnvd
- secunia.com/advisories/17042nvd
- secunia.com/advisories/17090nvd
- secunia.com/advisories/17149nvd
- secunia.com/advisories/17263nvd
- secunia.com/advisories/17284nvd
- www.debian.org/security/2005/dsa-866nvd
- www.debian.org/security/2005/dsa-868nvd
- www.mandriva.com/security/advisoriesnvd
- www.mozilla.org/security/announce/mfsa2005-58.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-785.htmlnvd
- www.redhat.com/support/errata/RHSA-2005-791.htmlnvd
- www.securityfocus.com/bid/14888nvd
- www.securityfocus.com/bid/15495nvd
- www.ubuntu.com/usn/usn-186-1nvd
- www.ubuntu.com/usn/usn-186-2nvd
- www.ubuntu.com/usn/usn-200-1nvd
- www.vupen.com/english/advisories/2005/1794nvd
- www.vupen.com/english/advisories/2005/1824nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11105nvd
News mentions
0No linked articles in our index yet.