CVE-2005-1157 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-1157 Interim 1 4 2023-12-09T02:22:27Z current 2021-05-30T12:32:29Z 2023-12-09T02:22:27Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-1157 Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in the GUI, which could then be used to execute malicious script, aka "Firesearching 2." The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FD63OCLAIY3MTA77ICWVKZD4VWMHVAHW/#FD63OCLAIY3MTA77ICWVKZD4VWMHVAHW E-Mail link for SUSE-SA:2005:028 https://www.suse.com/support/security/rating/ SUSE Security Ratings Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 allows remote attackers to replace existing search plugins with malicious ones using sidebar.addSearchEngine and the same filename as the target engine, which may not be displayed in the GUI, which could then be used to execute malicious script, aka "Firesearching 2." CVE-2005-1157 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P