Intrusion Prevention

Mozilla.Firefox.Plugin.Access.Control.Code.Execution

Description

This indicates an attack attempt against an arbitrary Code Execution in the Mozilla Firefox.
The vulnerability is caused by an error due to the way XPCOM is implemented in Mozilla firefox. It allows a remote attacker to execute arbitrary code via a crafted web page.

Affected Products

Mozilla Foundation Firefox 0.8 - 1.0
Mozilla Foundation Mozilla Suite 1.0 - 1.7.5

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version,available from the web site:
http://www.mozilla.org/en-US/firefox/new/

CVE References

CVE-2005-0527