Back to search
CVE-2006-2776
Published: Jun 2, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
102800
vendor-advisory
x_refsource_SUNALERT
20709
third-party-advisory
x_refsource_SECUNIA
21176
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:145
vendor-advisory
x_refsource_MANDRIVA
ADV-2006-3748
vdb-entry
x_refsource_VUPEN
USN-297-3
vendor-advisory
x_refsource_UBUNTU
USN-296-1
vendor-advisory
x_refsource_UBUNTU
USN-323-1
vendor-advisory
x_refsource_UBUNTU
20561
third-party-advisory
x_refsource_SECUNIA
TA06-153A
third-party-advisory
x_refsource_CERT
21210
third-party-advisory
x_refsource_SECUNIA
mozilla-contentdefined-code-execution(26848)
vdb-entry
x_refsource_XF
RHSA-2006:0594
vendor-advisory
x_refsource_REDHAT
21336
third-party-advisory
x_refsource_SECUNIA
20382
third-party-advisory
x_refsource_SECUNIA
1016214
vdb-entry
x_refsource_SECTRACK
20060602 rPSA-2006-0091-1 firefox thunderbird
mailing-list
x_refsource_BUGTRAQ
ADV-2006-3749
vdb-entry
x_refsource_VUPEN
RHSA-2006:0610
vendor-advisory
x_refsource_REDHAT
20376
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:146
vendor-advisory
x_refsource_MANDRIVA
RHSA-2006:0609
vendor-advisory
x_refsource_REDHAT
21178
third-party-advisory
x_refsource_SECUNIA
1016202
vdb-entry
x_refsource_SECTRACK
21607
third-party-advisory
x_refsource_SECUNIA
18228
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:9849
vdb-entry
signature
x_refsource_OVAL
21532
third-party-advisory
x_refsource_SECUNIA
21270
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0083
vdb-entry
x_refsource_VUPEN
VU#575969
third-party-advisory
x_refsource_CERT-VN
24108
third-party-advisory
x_refsource_SECUNIA
21188
third-party-advisory
x_refsource_SECUNIA
21134
third-party-advisory
x_refsource_SECUNIA
21631
third-party-advisory
x_refsource_SECUNIA
SSRT061181
vendor-advisory
x_refsource_HP
ADV-2007-0573
vdb-entry
x_refsource_VUPEN
SSRT061236
vendor-advisory
x_refsource_HP
USN-296-2
vendor-advisory
x_refsource_UBUNTU
GLSA-200606-21
vendor-advisory
x_refsource_GENTOO
DSA-1118
vendor-advisory
x_refsource_DEBIAN
HPSBUX02153
vendor-advisory
x_refsource_HP
DSA-1120
vendor-advisory
x_refsource_DEBIAN
RHSA-2006:0611
vendor-advisory
x_refsource_REDHAT
HPSBUX02156
vendor-advisory
x_refsource_HP
DSA-1134
vendor-advisory
x_refsource_DEBIAN
GLSA-200606-12
vendor-advisory
x_refsource_GENTOO
21324
third-party-advisory
x_refsource_SECUNIA
21183
third-party-advisory
x_refsource_SECUNIA
22066
third-party-advisory
x_refsource_SECUNIA
21269
third-party-advisory
x_refsource_SECUNIA
http://www.mozilla.org/security/announce/2006/mfsa2006-37.html
x_refsource_CONFIRM
SUSE-SA:2006:035
vendor-advisory
x_refsource_SUSE
USN-297-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2006:0578
vendor-advisory
x_refsource_REDHAT
ADV-2006-2106
vdb-entry
x_refsource_VUPEN
MDKSA-2006:143
vendor-advisory
x_refsource_MANDRIVA
22065
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now