What is the severity of CVE-2005-0590?

CVE-2005-0590 is classified as a moderate severity vulnerability.

How do I fix CVE-2005-0590?

To fix CVE-2005-0590, update your Firefox or Thunderbird to version 1.0.1 or later.

What types of software are affected by CVE-2005-0590?

CVE-2005-0590 affects multiple versions of Mozilla Firefox and Thunderbird prior to version 1.0.1 and Mozilla prior to version 1.7.6.

What kind of attack does CVE-2005-0590 enable?

CVE-2005-0590 allows remote attackers to spoof the hostname when performing installations.

When was CVE-2005-0590 disclosed?

CVE-2005-0590 was disclosed in March 2005.

Vulnerability/
CVE-2005-0590

medium

CWE

NVD-CWE-Other

28/2/2005

7/8/2024

CVE-2005-0590

First published: Mon Feb 28 2005(Updated: )

The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequence in the URL, which appears before the real hostname.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Mozilla Thunderbird	=0.6
Mozilla Firefox	=0.8
Mozilla Thunderbird	=0.7.2
Mozilla Thunderbird	=0.3
Mozilla Mozilla	=1.7-alpha
Mozilla Thunderbird	=0.2
Mozilla Mozilla	=1.7-rc1
Mozilla Mozilla	=1.5-rc2
Mozilla Mozilla	=1.7
Mozilla Firefox	=0.9.1
Mozilla Mozilla	=1.7.5
Mozilla Firefox	=0.10.1
Mozilla Thunderbird	=1.0
Mozilla Firefox	=0.9
Mozilla Mozilla	=1.6-beta
Mozilla Mozilla	=1.4.1
Mozilla Mozilla	=1.5-alpha
Mozilla Mozilla	=1.5-rc1
Mozilla Mozilla	=1.3
Mozilla Firefox	=1.0
Mozilla Mozilla	=1.7-beta
Mozilla Mozilla	=1.4
Mozilla Mozilla	=1.5
Mozilla Thunderbird	=0.5
Mozilla Thunderbird	=0.9
Mozilla Mozilla	=1.7.1
Mozilla Thunderbird	=0.7.3
Mozilla Firefox	=0.9.3
Mozilla Mozilla	=1.4-alpha
Mozilla Thunderbird	=0.4
Mozilla Thunderbird	=0.7
Mozilla Mozilla	=1.5.1
Mozilla Firefox	=0.9.2
Mozilla Mozilla	=1.7.2
Mozilla Thunderbird	=0.1
Mozilla Firefox	=0.9-rc
Mozilla Mozilla	=1.7-rc3
Mozilla Thunderbird	=0.7.1
Mozilla Thunderbird	=0.8
Mozilla Mozilla	=1.7-rc2
Mozilla Firefox	=0.10
Mozilla Mozilla	=1.7.3
Mozilla Mozilla	=1.6-alpha
Mozilla Mozilla	=1.6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-0590?
CVE-2005-0590 is classified as a moderate severity vulnerability.
How do I fix CVE-2005-0590?
To fix CVE-2005-0590, update your Firefox or Thunderbird to version 1.0.1 or later.
What types of software are affected by CVE-2005-0590?
CVE-2005-0590 affects multiple versions of Mozilla Firefox and Thunderbird prior to version 1.0.1 and Mozilla prior to version 1.7.6.
What kind of attack does CVE-2005-0590 enable?
CVE-2005-0590 allows remote attackers to spoof the hostname when performing installations.
When was CVE-2005-0590 disclosed?
CVE-2005-0590 was disclosed in March 2005.

agent/type
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/author
agent/severity
agent/weakness
agent/references
agent/remedy
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/tags
agent/first-publish-date
agent/source
vendor/mozilla
canonical/mozilla thunderbird
version/mozilla thunderbird/0.6
canonical/mozilla firefox
version/mozilla firefox/0.8
version/mozilla thunderbird/0.7.2
version/mozilla thunderbird/0.3
canonical/mozilla mozilla
version/mozilla mozilla/1.7-alpha
version/mozilla thunderbird/0.2
version/mozilla mozilla/1.7-rc1
version/mozilla mozilla/1.5-rc2
version/mozilla mozilla/1.7
version/mozilla firefox/0.9.1
version/mozilla mozilla/1.7.5
version/mozilla firefox/0.10.1
version/mozilla thunderbird/1.0
version/mozilla firefox/0.9
version/mozilla mozilla/1.6-beta
version/mozilla mozilla/1.4.1
version/mozilla mozilla/1.5-alpha
version/mozilla mozilla/1.5-rc1
version/mozilla mozilla/1.3
version/mozilla firefox/1.0
version/mozilla mozilla/1.7-beta
version/mozilla mozilla/1.4
version/mozilla mozilla/1.5
version/mozilla thunderbird/0.5
version/mozilla thunderbird/0.9
version/mozilla mozilla/1.7.1
version/mozilla thunderbird/0.7.3
version/mozilla firefox/0.9.3
version/mozilla mozilla/1.4-alpha
version/mozilla thunderbird/0.4
version/mozilla thunderbird/0.7
version/mozilla mozilla/1.5.1
version/mozilla firefox/0.9.2
version/mozilla mozilla/1.7.2
version/mozilla thunderbird/0.1
version/mozilla firefox/0.9-rc
version/mozilla mozilla/1.7-rc3
version/mozilla thunderbird/0.7.1
version/mozilla thunderbird/0.8
version/mozilla mozilla/1.7-rc2
version/mozilla firefox/0.10
version/mozilla mozilla/1.7.3
version/mozilla mozilla/1.6-alpha
version/mozilla mozilla/1.6

CVE-2005-0590

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-0590?

How do I fix CVE-2005-0590?

What types of software are affected by CVE-2005-0590?

What kind of attack does CVE-2005-0590 enable?

When was CVE-2005-0590 disclosed?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2005-0590?

How do I fix CVE-2005-0590?

What types of software are affected by CVE-2005-0590?

What kind of attack does CVE-2005-0590 enable?

When was CVE-2005-0590 disclosed?