CVE-2005-1476

Firefox < 1.0.3 - Remote Code Execution via IFRAME Navigation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1476. PoCs published by Edward Gagnon.

AI-analyzed exploit summary This exploit targets CVE-2005-1476, a vulnerability in Mozilla Firefox that allows arbitrary code execution via JavaScript. The PoC uses obfuscated JavaScript to create a malicious file and execute it via TFTP, demonstrating remote code execution.

Description

Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrary code execution when combined with CVE-2005-1477.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Edward Gagnon · htmlremotewindows

https://www.exploit-db.com/exploits/986

View Code ZIP pw:eip

This exploit targets CVE-2005-1476, a vulnerability in Mozilla Firefox that allows arbitrary code execution via JavaScript. The PoC uses obfuscated JavaScript to create a malicious file and execute it via TFTP, demonstrating remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Mozilla Firefox (versions prior to fix for CVE-2005-1476)

No auth needed

Prerequisites: Victim must visit a malicious webpage · TFTP server hosting the payload

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (19)

Core 19

Core References

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/534710

Issue Tracking x_refsource_misc

https://bugzilla.mozilla.org/show_bug.cgi?id=292691

Various Sources vendor-advisory x_refsource_sco

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2005-435.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1013913

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/15292

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15495

Issue Tracking x_refsource_misc

https://bugzilla.mozilla.org/show_bug.cgi?id=293302

Mailing List mailing-list x_refsource_fulldisc

http://marc.info/?l=full-disclosure&m=111556301530553&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/13544

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10045

Exploit x_refsource_misc

http://greyhatsecurity.org/vulntests/ffrc.htm

Vendor Advisory x_refsource_confirm

http://www.mozilla.org/security/announce/mfsa2005-42.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/20443

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100002

Various Sources x_refsource_misc

http://greyhatsecurity.org/firefox.htm

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2005-434.html

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2005/0493

Mailing List mailing-list x_refsource_fulldisc

http://marc.info/?l=full-disclosure&m=111553138007647&w=2

Scores

EPSS 0.1670

EPSS Percentile 96.6%

Details

Status published

Products (1)

mozilla/firefox < 1.0.3

Published May 09, 2005

Tracked Since Feb 18, 2026