Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2005-0586

Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the extensions of files to download via the Content-Disposition header, which could be used to trick users into downloading dangerous content.

  • Published: May 2, 2005
  • Updated: Nov 9, 2025
  • CVE: CVE-2005-0586
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
mozilla / firefox 0.8 0.8.x
mozilla / mozilla 1.7-alpha 1.7-alpha.x
mozilla / mozilla 1.7-rc1 1.7-rc1.x
mozilla / mozilla 1.5-rc2 1.5-rc2.x
mozilla / mozilla 1.7 1.7.x
mozilla / firefox 0.9.1 0.9.1.x
mozilla / mozilla 1.7.5 1.7.5.x
mozilla / firefox 0.10.1 0.10.1.x
mozilla / firefox 0.9 0.9.x
mozilla / mozilla 1.6-beta 1.6-beta.x
mozilla / mozilla 1.4.1 1.4.1.x
mozilla / mozilla 1.5-alpha 1.5-alpha.x
mozilla / mozilla 1.5-rc1 1.5-rc1.x
mozilla / mozilla 1.3 1.3.x
mozilla / firefox 1.0 1.0.x
mozilla / mozilla 1.7-beta 1.7-beta.x
mozilla / mozilla 1.4 1.4.x
mozilla / mozilla 1.5 1.5.x
mozilla / mozilla 1.7.1 1.7.1.x
mozilla / firefox 0.9.3 0.9.3.x
mozilla / mozilla 1.4-alpha 1.4-alpha.x
mozilla / mozilla 1.5.1 1.5.1.x
mozilla / firefox 0.9.2 0.9.2.x
mozilla / mozilla 1.7.2 1.7.2.x
mozilla / firefox 0.9-rc 0.9-rc.x
mozilla / mozilla 1.7-rc3 1.7-rc3.x
mozilla / mozilla 1.7-rc2 1.7-rc2.x
mozilla / firefox 0.10 0.10.x
mozilla / mozilla 1.7.3 1.7.3.x
mozilla / mozilla 1.6-alpha 1.6-alpha.x
mozilla / mozilla 1.6 1.6.x