{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2005-0401","title":"Title"},{"category":"description","text":"FireFox 1.0.1 and Mozilla before 1.7.6 do not sufficiently address all attack vectors for loading chrome files and hijacking drag and drop events, which allows remote attackers to execute arbitrary XUL code by tricking a user into dragging a scrollbar, a variant of CVE-2005-0527, aka \"Firescrolling 2.\"","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2005-0401","url":"https://www.suse.com/security/cve/CVE-2005-0401"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 67168 for CVE-2005-0401","url":"https://bugzilla.suse.com/67168"},{"category":"external","summary":"SUSE Bug 74445 for CVE-2005-0401","url":"https://bugzilla.suse.com/74445"}],"title":"SUSE CVE CVE-2005-0401","tracking":{"current_release_date":"2023-02-15T06:19:00Z","generator":{"date":"2023-02-15T06:19:00Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2005-0401","initial_release_date":"2023-02-15T06:19:00Z","revision_history":[{"date":"2023-02-15T06:19:00Z","number":"2","summary":"Current version"}],"status":"interim","version":"2"}}}