What is the severity of CVE-2005-0587?

CVE-2005-0587 has a moderate severity rating as it allows remote exploitation through social engineering.

How do I fix CVE-2005-0587?

To fix CVE-2005-0587, update to Firefox version 1.0.1 or later, or Mozilla version 1.7.6 or later.

What versions are affected by CVE-2005-0587?

CVE-2005-0587 affects Firefox versions before 1.0.1 and all Mozilla versions before 1.7.6.

Can CVE-2005-0587 lead to data loss?

Yes, CVE-2005-0587 can lead to data loss by overwriting arbitrary files on the user's system.

What type of attack does CVE-2005-0587 exploit?

CVE-2005-0587 exploits user interaction by tricking them into downloading a specifically crafted .LNK file.

Vulnerability/
CVE-2005-0587

medium

6.5

CWE

NVD-CWE-Other 59

28/2/2005

7/8/2024

CVE-2005-0587

First published: Mon Feb 28 2005(Updated: )

Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file that was referenced in the first .LNK file.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Firefox	=0.8
Firefox	=0.9
Firefox	=0.9-rc
Firefox	=0.9.1
Firefox	=0.9.2
Firefox	=0.9.3
Firefox	=0.10
Firefox	=0.10.1
Firefox	=1.0
Mozilla Firefox	=1.3
Mozilla Firefox	=1.4
Mozilla Firefox	=1.4-alpha
Mozilla Firefox	=1.4.1
Mozilla Firefox	=1.5
Mozilla Firefox	=1.5-alpha
Mozilla Firefox	=1.5-rc1
Mozilla Firefox	=1.5-rc2
Mozilla Firefox	=1.5.1
Mozilla Firefox	=1.6
Mozilla Firefox	=1.6-alpha
Mozilla Firefox	=1.6-beta
Mozilla Firefox	=1.7
Mozilla Firefox	=1.7-alpha
Mozilla Firefox	=1.7-beta
Mozilla Firefox	=1.7-rc1
Mozilla Firefox	=1.7-rc2
Mozilla Firefox	=1.7-rc3
Mozilla Firefox	=1.7.1
Mozilla Firefox	=1.7.2
Mozilla Firefox	=1.7.3
Mozilla Firefox	=1.7.5
Firefox	<1.0.1
Mozilla Firefox	<1.7.6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-0587?
CVE-2005-0587 has a moderate severity rating as it allows remote exploitation through social engineering.
How do I fix CVE-2005-0587?
To fix CVE-2005-0587, update to Firefox version 1.0.1 or later, or Mozilla version 1.7.6 or later.
What versions are affected by CVE-2005-0587?
CVE-2005-0587 affects Firefox versions before 1.0.1 and all Mozilla versions before 1.7.6.
Can CVE-2005-0587 lead to data loss?
Yes, CVE-2005-0587 can lead to data loss by overwriting arbitrary files on the user's system.
What type of attack does CVE-2005-0587 exploit?
CVE-2005-0587 exploits user interaction by tricking them into downloading a specifically crafted .LNK file.

agent/type
agent/weakness
agent/references
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/author
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
collector/nvd-historical
vendor/mozilla
canonical/firefox
version/firefox/0.8
version/firefox/0.9
version/firefox/0.9-rc
version/firefox/0.9.1
version/firefox/0.9.2
version/firefox/0.9.3
version/firefox/0.10
version/firefox/0.10.1
version/firefox/1.0
canonical/mozilla firefox
version/mozilla firefox/1.3
version/mozilla firefox/1.4
version/mozilla firefox/1.4-alpha
version/mozilla firefox/1.4.1
version/mozilla firefox/1.5
version/mozilla firefox/1.5-alpha
version/mozilla firefox/1.5-rc1
version/mozilla firefox/1.5-rc2
version/mozilla firefox/1.5.1
version/mozilla firefox/1.6
version/mozilla firefox/1.6-alpha
version/mozilla firefox/1.6-beta
version/mozilla firefox/1.7
version/mozilla firefox/1.7-alpha
version/mozilla firefox/1.7-beta
version/mozilla firefox/1.7-rc1
version/mozilla firefox/1.7-rc2
version/mozilla firefox/1.7-rc3
version/mozilla firefox/1.7.1
version/mozilla firefox/1.7.2
version/mozilla firefox/1.7.3
version/mozilla firefox/1.7.5