Lucene search

RedhatCVE-2006-1725

HistoryApr 14, 2006 - 10:02 a.m.

CVE-2006-1725

2006-04-1410:02:00

CWE-264

redhat

web.nvd.nist.gov

mozilla

firefox

seamonkey

vulnerability

remote code execution

cve-2006-1725

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.087

Percentile

94.5%

JSON

Mozilla Firefox 1.5 before 1.5.0.2 and SeaMonkey before 1.0.1 causes certain windows to become translucent due to an interaction between XUL content windows and the history mechanism, which might allow user-assisted remote attackers to trick users into executing arbitrary code.

Affected configurations

Nvd

Node

mozillafirefoxRange1.5–1.5.0.2

mozillaseamonkeyRange<1.0.1

VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	*	cpe:2.3:a:mozilla:firefox::::::::
mozilla	seamonkey	*	cpe:2.3:a:mozilla:seamonkey::::::::

References

secunia.com/advisories/19631

secunia.com/advisories/19649

secunia.com/advisories/22066

www.mozilla.org/security/announce/2006/mfsa2006-29.html

www.securityfocus.com/archive/1/446658/100/200/threaded

www.securityfocus.com/bid/17516

www.vupen.com/english/advisories/2006/1356

www.vupen.com/english/advisories/2006/3748

www.vupen.com/english/advisories/2008/0083

bugzilla.mozilla.org/show_bug.cgi?id=327014

exchange.xforce.ibmcloud.com/vulnerabilities/25827

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1471

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.087

Percentile

94.5%

JSON

Related for CVE-2006-1725