Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-3807HistoryJul 27, 2006 - 7:04 p.m.
CVE-2006-3807
2006-07-2719:04:00
Debian Security Bug Tracker
security-tracker.debian.org
10
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.651 Medium
EPSS
Percentile
97.9%
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and calling “named JavaScript functions” that use the constructor.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | firefox | < 1.5.dfsg+1.5.0.5-1 | firefox_1.5.dfsg+1.5.0.5-1_all.deb |
| Debian | 12 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
| Debian | 11 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
| Debian | 10 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
| Debian | 999 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
| Debian | 13 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Related
cert
cert
Mozilla products fail to properly validate JavaScript constructors
2006-07-27 00:00:00
cvelist
cvelist
CVE-2006-3807
2006-07-27 19:00:00
ubuntucve
ubuntucve
CVE-2006-3807
2006-07-27 00:00:00
nvd
nvd
CVE-2006-3807
2006-07-27 19:04:00
mozilla
mozilla
cve
cve
CVE-2006-3807
2006-07-27 19:04:00
osv
osv
mozilla-firefox - several vulnerabilities
2006-08-29 00:00:00
mozilla - several
2006-08-29 00:00:00
mozilla-thunderbird - several
2006-08-28 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1161)
2008-01-17 00:00:00
Debian Security Advisory DSA 1161-1 (mozilla-firefox)
2008-01-17 00:00:00
Debian Security Advisory DSA 1161-2 (mozilla-firefox)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-1161-2 : mozilla-firefox - several vulnerabilities
2006-10-14 00:00:00
Debian DSA-1159-2 : mozilla-thunderbird - several vulnerabilities
2006-10-14 00:00:00
Debian DSA-1160-2 : mozilla - several vulnerabilities
2006-10-14 00:00:00
debian
debian
securityvulns
securityvulns
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2006-08-03 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2006-08-03 00:00:00
Mozilla SeaMonkey: Multiple vulnerabilities
2006-08-03 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2006-07-29 00:00:00
Mozilla vulnerabilities
2006-10-10 00:00:00
firefox vulnerabilities
2006-07-28 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2006-07-25 00:00:00
redhat
redhat
(RHSA-2006:0608) seamonkey security update
2006-07-27 00:00:00
(RHSA-2006:0610) firefox security update
2006-07-28 00:00:00
(RHSA-2006:0611) thunderbird security update
2006-07-28 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2006-08-16 15:11:18
centos
centos
seamonkey security update
2006-08-04 20:56:41
thunderbird security update
2006-07-29 11:51:27
firefox security update
2006-07-29 11:51:13
oraclelinux
oraclelinux
Critical firefox security update
2006-12-07 00:00:00
Critical thunderbird security update
2006-12-07 00:00:00
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.651 Medium
EPSS
Percentile
97.9%
Related for DEBIANCVE:CVE-2006-3807