Unrated severityNVD Advisory· Published Sep 28, 2005· Updated Jun 16, 2026
CVE-2005-3089
CVE-2005-3089
Description
Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in triggering this issue, so it might not be a vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:1.0.6:*:*:*:*:*:*:*
- (no CPE)range: =1.0.6
Patches
Vulnerability mechanics
References
9- securitytracker.com/idnvdPatch
- www.mozilla.org/products/firefox/releases/1.0.7.htmlnvdPatch
- www.securityfocus.com/bid/14924nvdPatch
- secunia.com/advisories/16977nvd
- www.osvdb.org/19615nvd
- www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00004.htmlnvd
- bugzilla.mozilla.org/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/22371nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9280nvd
News mentions
0No linked articles in our index yet.