Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-1733HistoryApr 14, 2006 - 10:02 a.m.
CVE-2006-1733
2006-04-1410:02:00
Debian Security Bug Tracker
security-tracker.debian.org
12
0.971 High
EPSS
Percentile
99.8%
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly protect the compilation scope of privileged built-in XBL bindings, which allows remote attackers to execute arbitrary code via the (1) valueOf.call or (2) valueOf.apply methods of an XBL binding, or (3) “by inserting an XBL method into the DOM’s document.body prototype chain.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 1.5.dfsg+1.5.0.2-2 | firefox_1.5.dfsg+1.5.0.2-2_all.deb |
| Debian | 12 | all | thunderbird | < 1.5.0.2-1 | thunderbird_1.5.0.2-1_all.deb |
| Debian | 11 | all | thunderbird | < 1.5.0.2-1 | thunderbird_1.5.0.2-1_all.deb |
| Debian | 10 | all | thunderbird | < 1.5.0.2-1 | thunderbird_1.5.0.2-1_all.deb |
| Debian | 999 | all | thunderbird | < 1.5.0.2-1 | thunderbird_1.5.0.2-1_all.deb |
| Debian | 13 | all | thunderbird | < 1.5.0.2-1 | thunderbird_1.5.0.2-1_all.deb |
Related
checkpoint_advisories
checkpoint_advisories
cert
cert
Mozilla XBL binding vulnerability
2006-04-17 00:00:00
cvelist
cvelist
CVE-2006-1733
2006-04-14 10:00:00
prion
prion
Code injection
2006-04-14 10:02:00
ubuntucve
ubuntucve
CVE-2006-1733
2006-04-14 00:00:00
cve
cve
CVE-2006-1733
2006-04-14 10:02:00
mozilla
mozilla
Accessing XBL compilation scope via valueOf.call() — Mozilla
2006-04-13 00:00:00
securityvulns
securityvulns
nessus
nessus
Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2006:075)
2006-04-26 00:00:00
Fedora Core 5 : firefox-1.5.0.2-1.1.fc5 (2006-411)
2006-04-21 00:00:00
Fedora Core 4 : mozilla-1.7.13-1.1.fc4 (2006-488)
2007-01-17 00:00:00
openvas
openvas
SLES9: Security update for Mozilla suite
2009-10-10 00:00:00
SLES9: Security update for Mozilla suite
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)
2008-09-24 00:00:00
suse
suse
remote code execution in MozillaFirefox,mozilla
2006-04-20 13:13:08
remote code execution in MozillaThunderbird
2006-04-25 13:15:04
remote code execution in phpMyAdmin
2006-01-26 13:53:52
redhat
redhat
(RHSA-2006:0328) firefox security update
2006-04-14 00:00:00
(RHSA-2006:0329) mozilla security update
2006-04-18 00:00:00
(RHSA-2006:0330) thunderbird security update
2006-04-21 00:00:00
centos
centos
firefox security update
2006-04-14 18:00:35
devhelp, mozilla security update
2006-04-18 17:41:36
galeon, mozilla security update
2006-04-18 23:53:59
ubuntu
ubuntu
Firefox vulnerabilities
2006-04-20 00:00:00
Thunderbird vulnerabilities
2006-05-03 00:00:00
Mozilla vulnerabilities
2006-04-28 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2006-05-08 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2006-04-23 00:00:00
Mozilla Suite: Multiple vulnerabilities
2006-04-28 00:00:00
osv
osv
mozilla-firefox - several
2006-04-26 00:00:00
mozilla-thunderbird - several vulnerabilities
2006-05-04 00:00:00
mozilla - several
2006-04-27 00:00:00
debian
debian
freebsd
freebsd
mozilla -- multiple vulnerabilities
2006-04-13 00:00:00