Lucene search

[email protected]CVE-2006-6507

HistoryDec 20, 2006 - 1:28 a.m.

CVE-2006-6507

2006-12-2001:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

mozilla

firefox

xss

protection bypass

cve-2006-6507

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.057 Low

EPSS

Percentile

93.2%

JSON

Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting (XSS) protection via vectors related to a Function.prototype regression error.

CPENameOperatorVersion
mozilla:firefoxmozilla firefoxeq2.0

CPE	Name	Operator	Version
mozilla:firefox	mozilla firefox	eq	2.0

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

secunia.com/advisories/23282

secunia.com/advisories/23545

secunia.com/advisories/23589

secunia.com/advisories/23614

secunia.com/advisories/23672

security.gentoo.org/glsa/glsa-200701-02.xml

securitytracker.com/id?1017422

www.mozilla.org/security/announce/2006/mfsa2006-76.html

www.novell.com/linux/security/advisories/2006_80_mozilla.html

www.novell.com/linux/security/advisories/2007_06_mozilla.html

www.securityfocus.com/bid/21668

www.ubuntu.com/usn/usn-398-1

www.us-cert.gov/cas/techalerts/TA06-354A.html

www.vupen.com/english/advisories/2006/5068

www.vupen.com/english/advisories/2008/0083

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.057 Low

EPSS

Percentile

93.2%

JSON

Related for CVE-2006-6507

ubuntucve1 securityvulns1 mozilla1 openvas5 ubuntu1 nessus8 gentoo1 suse2