CVE-2005-1477

Exp

The install function in Firefox 1.0.3 allows remote web sites on the browser's whitelist, such as update.mozilla.org or addon.mozilla.org, to execute arbitrary Javascript with chrome privileges, leading to arbitrary code execution on the system when combined with vulnerabilities such as CVE-2005-1476, as demonstrated using a javascript: URL as the package icon and a cross-site scripting (XSS) attack on a vulnerable whitelist site.

Published: 2005-05-09 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2005-1477 is rated High Exploit Risk (74.5/100): CVSS Medium severity, with high exploitation likelihood (EPSS 41.65%, 97th percentile). 3 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +9.84% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2005-1477

EDB-ID Source Kind Published Link
986 exploit_db edb 2005-05-07 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2005-1477

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-08-08 31.80% 41.65% +9.84%
2 2025-03-30 25.55% 31.80% +6.25%
3 2025-03-29 25.55%

Full EPSS history (8 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2005-1477

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
5.1 2.0 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:H)
Exploitation requires uncommon or highly specific conditions.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 4.9 6.4 [email protected]

Weakness enumeration for CVE-2005-1477

OS Trackers for CVE-2005-1477

vendor priority summary link
redhat high https://access.redhat.com/security/cve/CVE-2005-1477
ubuntu medium CVE-2005-1477 medium priority: Ubuntu including 4 source packages (firefox, firefox-granparadiso, lightning-sunbird, midbrowser), 16 status rows across 4 suites (dapper, edgy, feisty, upstream): DNE 9, needs-triage 4, released 3. https://ubuntu.com/security/CVE-2005-1477

Affected software / configurations for CVE-2005-1477

Vendor Product Version Raw CPE
mozilla firefox 1.0.3 cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*

References for CVE-2005-1477

URL Tags
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://greyhatsecurity.org/firefox.htm Exploit
http://greyhatsecurity.org/vulntests/ffrc.htm Exploit
http://marc.info/?l=full-disclosure&m=111553138007647&w=2
http://marc.info/?l=full-disclosure&m=111556301530553&w=2
http://secunia.com/advisories/15292 Patch
http://securitytracker.com/id?1013913
http://www.kb.cert.org/vuls/id/648758 US Government Resource
http://www.mozilla.org/security/announce/mfsa2005-42.html
http://www.redhat.com/support/errata/RHSA-2005-434.html
http://www.redhat.com/support/errata/RHSA-2005-435.html
http://www.securityfocus.com/bid/13544
http://www.securityfocus.com/bid/15495
http://www.vupen.com/english/advisories/2005/0493
https://bugzilla.mozilla.org/show_bug.cgi?id=292691
https://bugzilla.mozilla.org/show_bug.cgi?id=293302
https://exchange.xforce.ibmcloud.com/vulnerabilities/20443
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100001
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9231
cvelogic Threat Intelligence