HomeMozillaCVE-2004-0905

CVE-2004-0905

UNKNOWN
4.6CVSS
Published: 2004-09-14
Updated: 2025-04-03
AI Analysis

Description

Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.

CVSS Metrics

Vector
AV:L/AC:L/Au:N/C:P/I:P/A:P
Access Vector
local
Access Cmplx
low
Auth
none
Confidentiality
partial
Integrity
partial
Availability
partial
Weaknesses
NVD-CWE-Other

Metadata

Primary Vendor
MOZILLA
Published
9/14/2004
Last Modified
4/3/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

mozilla : firefoxmozilla : firefoxmozilla : firefoxmozilla : firefoxmozilla : firefoxmozilla : firefoxmozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillanetscape : navigatornetscape : navigatornetscape : navigatornetscape : navigatorconectiva : linuxconectiva : linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linuxredhat : enterprise_linux_desktopredhat : fedora_coreredhat : linuxredhat : linuxredhat : linuxredhat : linuxredhat : linux_advanced_workstationredhat : linux_advanced_workstationsuse : suse_linuxsuse : suse_linuxsuse : suse_linuxsuse : suse_linuxsuse : suse_linuxsuse : suse_linuxsuse : suse_linuxsuse : suse_linux

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2004-0905 | UNKNOWN Severity | CVEDatabase.com | CVEDatabase.com