Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3810

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-3810
Last Modified 07 Mar 2011 09:39:31
Published 27 Jul 2006 04:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-3810

Summary

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct.

Vulnerable Systems

Application

  • Mozilla Firefox 1.5

  • Mozilla Firefox 1.5.0.1

  • Mozilla Firefox 1.5.0.2

  • Mozilla Firefox 1.5.0.3

  • Mozilla Firefox 1.5.0.4

  • Mozilla Seamonkey 1.0

  • Mozilla Seamonkey 1.0.1

  • Mozilla Seamonkey 1.0.2

  • Mozilla Thunderbird 1.5

  • Mozilla Thunderbird 1.5.0.2

  • Mozilla Thunderbird 1.5.0.4


References

CERT-VN - VU#911004

BID - 19181

SECUNIA - 21229

SECUNIA - 21228

SECUNIA - 21216

SECUNIA - 19873

CONFIRM - https://issues.rpath.com/browse/RPL-537

CONFIRM - https://issues.rpath.com/browse/RPL-536

XF - mozilla-xpcnativewrapper-xss(27991)

VUPEN - ADV-2008-0083

VUPEN - ADV-2006-3749

VUPEN - ADV-2006-3748

VUPEN - ADV-2006-2998

UBUNTU - USN-329-1

UBUNTU - USN-327-1

HP - SSRT061181

HP - HPSBUX02156

BUGTRAQ - 20060727 rPSA-2006-0137-1 firefox

REDHAT - RHSA-2006:0611

REDHAT - RHSA-2006:0610

REDHAT - RHSA-2006:0608

SUSE - SUSE-SA:2006:048

CONFIRM - http://www.mozilla.org/security/announce/2006/mfsa2006-54.html

GENTOO - GLSA-200608-03

SECTRACK - 1016588

SECTRACK - 1016587

SECTRACK - 1016586

GENTOO - GLSA-200608-04

GENTOO - GLSA-200608-02

SECUNIA - 21607

SECUNIA - 21532

SECUNIA - 21529

SECUNIA - 21361

SECUNIA - 21358

SECUNIA - 21343

SECUNIA - 21336

SECUNIA - 21275

SECUNIA - 21270

SECUNIA - 21269

SECUNIA - 21262

SECUNIA - 21250

SECUNIA - 21246

SECUNIA - 21243

REDHAT - RHSA-2006:0609

SGI - 20060703-01-P

UBUNTU - USN-354-1

UBUNTU - USN-350-1

REDHAT - RHSA-2006:0594

MANDRIVA - MDKSA-2006:146

MANDRIVA - MDKSA-2006:145

MANDRIVA - MDKSA-2006:143

DEBIAN - DSA-1160

DEBIAN - DSA-1159

SECUNIA - 22210

SECUNIA - 22066

SECUNIA - 22065

SECUNIA - 22055

SECUNIA - 21654

SECUNIA - 21634

SECUNIA - 21631

HP - HPSBUX02153

HP - SSRT061236


Last Updated: 27 May 2016 10:42:36