Firescrolling: Remote Code Execution Vulnerability in Firefox 1.0

Firescrolling: Remote Code Execution Vulnerability in Firefox 1.0

CVE-2005-0527 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Firefox 1.0 allows remote attackers to execute arbitrary code via plugins that load "privileged content" into frames, as demonstrated using certain XUL events when a user drags a scrollbar two times, aka "Firescrolling."

Learn more about our User Device Pen Test.