CVE-2005-2265

Firefox < 1.0.5 and Mozilla < 1.7.9 - Denial of Service via InstallVersion.compareTo

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-2265. PoCs published by Metasploit, H D Moore, hdm, including Metasploit module exploits/multi/browser/mozilla_compareto.

AI-analyzed exploit summary This exploit targets a code execution vulnerability in Mozilla Suite/Firefox via a heap spray and manipulation of the InstallVersion.compareTo() method. It leverages JavaScript to trigger memory corruption and execute arbitrary payloads on vulnerable Windows systems.

Description

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16306

This exploit targets a code execution vulnerability in Mozilla Suite/Firefox via a heap spray and manipulation of the InstallVersion.compareTo() method. It leverages JavaScript to trigger memory corruption and execute arbitrary payloads on vulnerable Windows systems.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Mozilla Suite 1.7-1.7.10, Firefox 1.0-1.0.4
No auth needed
Prerequisites: Vulnerable Mozilla/Firefox version on Windows · JavaScript execution in the browser
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by H D Moore · rubyremotewindows
https://www.exploit-db.com/exploits/9947

This exploit leverages a heap spray technique to execute arbitrary code in Mozilla Suite/Firefox by exploiting a vulnerability in the InstallVersion->compareTo() method. It targets Windows systems with Firefox versions prior to 1.0.5.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Mozilla Suite/Firefox < 1.0.5
No auth needed
Prerequisites: Victim must visit a malicious webpage · Target must be using a vulnerable version of Firefox
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by hdm · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/mozilla_compareto.rb

This Metasploit module exploits a code execution vulnerability in Mozilla Suite/Firefox via a heap spray and JavaScript manipulation of the `compareTo()` method. It targets a memory corruption issue (CVE-2005-2265) to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Mozilla Suite < 1.7.10, Firefox < 1.0.5
No auth needed
Prerequisites: Victim must visit a malicious webpage · JavaScript must be enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (22)

Core 22
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A781
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-587.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-601.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-586.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2005/dsa-810
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_18_sr.html
Third Party Advisory, US Government Resource third-party-advisory government-resource x_refsource_ciac
http://www.ciac.org/ciac/bulletins/p-252.shtml
Patch, Vendor Advisory x_refsource_confirm
http://www.mozilla.org/security/announce/mfsa2005-50.html
Issue Tracking vendor-advisory x_refsource_fedora
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=160202
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19823
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/16059
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/16044
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/1075
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10397
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_45_mozilla.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/14242
Exploit, Vendor Advisory x_refsource_misc
https://bugzilla.mozilla.org/show_bug.cgi?id=295854
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/16043
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2006_04_25.html
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A417
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100008

Scores

EPSS 0.6810
EPSS Percentile 99.2%

Details

Status published
Products (26)
mozilla/firefox 0.8
mozilla/firefox 0.9 (2 CPE variants)
mozilla/firefox 0.9.1
mozilla/firefox 0.9.2
mozilla/firefox 0.9.3
mozilla/firefox 0.10
mozilla/firefox 0.10.1
mozilla/firefox 1.0
mozilla/firefox 1.0.1
mozilla/firefox 1.0.2
... and 16 more
Published Jul 13, 2005
Tracked Since Feb 18, 2026