CVE-2005-2968 - OpenCVE

Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Mozilla	Mozilla Firefox

Configuration 1 [-]

OR	cpe:2.3:a:mozilla:firefox:1.0.6::linux:::::
	cpe:2.3:a:mozilla:mozilla:1.7.10::linux:::::

References

Link	Resource
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://secunia.com/advisories/16869	Patch Vendor Advisory
http://secunia.com/advisories/17042
http://secunia.com/advisories/17090
http://secunia.com/advisories/17149
http://secunia.com/advisories/17263
http://secunia.com/advisories/17284
http://www.debian.org/security/2005/dsa-866
http://www.debian.org/security/2005/dsa-868
http://www.kb.cert.org/vuls/id/914681	US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2005:174
http://www.mozilla.org/security/announce/mfsa2005-58.html
http://www.redhat.com/support/errata/RHSA-2005-785.html
http://www.redhat.com/support/errata/RHSA-2005-791.html
http://www.securityfocus.com/bid/14888
http://www.securityfocus.com/bid/15495
http://www.ubuntu.com/usn/usn-186-1
http://www.ubuntu.com/usn/usn-186-2
http://www.ubuntu.com/usn/usn-200-1
http://www.vupen.com/english/advisories/2005/1794
http://www.vupen.com/english/advisories/2005/1824
https://bugzilla.mozilla.org/show_bug.cgi?id=307185	Patch Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11105

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2005-09-20T04:00:00

Updated: 2017-10-10T00:57:01

Reserved: 2005-09-19T00:00:00

Link: CVE-2005-2968

JSON object: View

NVD Information

Status : Modified

Published: 2005-09-20T22:03:00.000

Modified: 2017-10-11T01:30:21.280

Link: CVE-2005-2968

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-09-19T00:00:00", "descriptions": [{"lang": "en", "value": "Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "DSA-868", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-868"}, {"name": "ADV-2005-1824", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/1824"}, {"name": "SCOSA-2005.49", "tags": ["vendor-advisory", "x_refsource_SCO"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt"}, {"name": "14888", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/14888"}, {"name": "15495", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/15495"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=307185"}, {"name": "USN-186-2", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-186-2"}, {"name": "16869", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/16869"}, {"name": "RHSA-2005:791", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-791.html"}, {"name": "USN-200-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-200-1"}, {"name": "17042", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17042"}, {"name": "DSA-866", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-866"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.mozilla.org/security/announce/mfsa2005-58.html"}, {"name": "17284", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17284"}, {"name": "17149", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17149"}, {"name": "17263", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17263"}, {"name": "oval:org.mitre.oval:def:11105", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11105"}, {"name": "VU#914681", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/914681"}, {"name": "RHSA-2005:785", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2005-785.html"}, {"name": "USN-186-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-186-1"}, {"name": "MDKSA-2005:174", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:174"}, {"name": "17090", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17090"}, {"name": "ADV-2005-1794", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/1794"}]}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2005-2968", "datePublished": "2005-09-20T04:00:00", "dateReserved": "2005-09-19T00:00:00", "dateUpdated": "2017-10-10T00:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:1.0.6:*:linux:*:*:*:*:*", "matchCriteriaId": "659F5DAF-D54F-43FB-AB2A-3FC7D456B434", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:mozilla:1.7.10:*:linux:*:*:*:*:*", "matchCriteriaId": "5BCA46FD-F3CB-44E5-A383-B6D3800B7BBC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash."}], "id": "CVE-2005-2968", "lastModified": "2017-10-11T01:30:21.280", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-09-20T22:03:00.000", "references": [{"source": "secalert@redhat.com", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/16869"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/17042"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/17090"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/17149"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/17263"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/17284"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2005/dsa-866"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2005/dsa-868"}, {"source": "secalert@redhat.com", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/914681"}, {"source": "secalert@redhat.com", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:174"}, {"source": "secalert@redhat.com", "url": "http://www.mozilla.org/security/announce/mfsa2005-58.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-785.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2005-791.html"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/14888"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/15495"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/usn-186-1"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/usn-186-2"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/usn-200-1"}, {"source": "secalert@redhat.com", "url": "http://www.vupen.com/english/advisories/2005/1794"}, {"source": "secalert@redhat.com", "url": "http://www.vupen.com/english/advisories/2005/1824"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=307185"}, {"source": "secalert@redhat.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11105"}], "sourceIdentifier": "secalert@redhat.com", "vendorComments": [{"comment": "Not vulnerable. These issues did not affect the versions of Mozilla and Firefox as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.\n", "lastModified": "2006-08-30T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}