Lucene search

PRIOn knowledge basePRION:CVE-2006-2776

HistoryJun 02, 2006 - 6:02 p.m.

Code injection

2006-06-0218:02:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.759 High

EPSS

Percentile

98.1%

JSON

Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended.

CPENameOperatorVersion
firefoxeq0.8
firefoxeq1.5 beta2
firefoxeq1.5.0.3
firefoxeq1.0.2
firefoxeq1.5 beta1
firefoxeq1.5
firefoxeq0.9.1
firefoxeq1.0.4
firefoxeq1.0.7
firefoxeq0.10.1

Name	Operator	Version
firefox	eq	0.8
firefox	eq	1.5 beta2
firefox	eq	1.5.0.3
firefox	eq	1.0.2
firefox	eq	1.5 beta1
firefox	eq	1.5
firefox	eq	0.9.1
firefox	eq	1.0.4
firefox	eq	1.0.7
firefox	eq	0.10.1

Rows per page:

1-10 of 471

References

rhn.redhat.com/errata/RHSA-2006-0609.html

secunia.com/advisories/20376

secunia.com/advisories/20382

secunia.com/advisories/20561

secunia.com/advisories/20709

secunia.com/advisories/21134

secunia.com/advisories/21176

secunia.com/advisories/21178

secunia.com/advisories/21183

secunia.com/advisories/21188

secunia.com/advisories/21210

secunia.com/advisories/21269

secunia.com/advisories/21270

secunia.com/advisories/21324

secunia.com/advisories/21336

secunia.com/advisories/21532

secunia.com/advisories/21607

secunia.com/advisories/21631

secunia.com/advisories/22065

secunia.com/advisories/22066

secunia.com/advisories/24108

securitytracker.com/id?1016202

securitytracker.com/id?1016214

sunsolve.sun.com/search/document.do?assetkey=1-26-102800-1

www.debian.org/security/2006/dsa-1118

www.debian.org/security/2006/dsa-1120

www.debian.org/security/2006/dsa-1134

www.gentoo.org/security/en/glsa/glsa-200606-12.xml

www.gentoo.org/security/en/glsa/glsa-200606-21.xml

www.kb.cert.org/vuls/id/575969

www.mandriva.com/security/advisories?name=MDKSA-2006:143

www.mandriva.com/security/advisories?name=MDKSA-2006:145

www.mandriva.com/security/advisories?name=MDKSA-2006:146

www.mozilla.org/security/announce/2006/mfsa2006-37.html

www.novell.com/linux/security/advisories/2006_35_mozilla.html

www.redhat.com/support/errata/RHSA-2006-0578.html

www.redhat.com/support/errata/RHSA-2006-0594.html

www.redhat.com/support/errata/RHSA-2006-0610.html

www.redhat.com/support/errata/RHSA-2006-0611.html

www.securityfocus.com/archive/1/435795/100/0/threaded

www.securityfocus.com/archive/1/446657/100/200/threaded

www.securityfocus.com/archive/1/446658/100/200/threaded

www.securityfocus.com/bid/18228

www.us-cert.gov/cas/techalerts/TA06-153A.html

www.vupen.com/english/advisories/2006/2106

www.vupen.com/english/advisories/2006/3748

www.vupen.com/english/advisories/2006/3749

www.vupen.com/english/advisories/2007/0573

www.vupen.com/english/advisories/2008/0083

exchange.xforce.ibmcloud.com/vulnerabilities/26848

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9849

usn.ubuntu.com/296-1/

usn.ubuntu.com/296-2/

usn.ubuntu.com/297-1/

usn.ubuntu.com/297-3/

usn.ubuntu.com/323-1/

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.759 High

EPSS

Percentile

98.1%

JSON

Related for PRION:CVE-2006-2776