QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-2784

Back to search

CVE-2006-2784

Published: Jun 2, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The PLUGINSPAGE functionality in Mozilla Firefox before 1.5.0.4 allows remote user-assisted attackers to execute privileged code by tricking a user into installing missing plugins and selecting the "Manual Install" button, then using nested javascript: URLs. NOTE: the manual install button is used for downloading software from a remote web site, so this issue would not cross privilege boundaries if the user progresses to the point of installing malicious software from the attacker-controlled site.

VendorProductVersions

n/a

n/a

affected
n/a

References

21176
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:145
vendor-advisory
x_refsource_MANDRIVA
ADV-2006-3748
vdb-entry
x_refsource_VUPEN
USN-297-3
vendor-advisory
x_refsource_UBUNTU
USN-296-1
vendor-advisory
x_refsource_UBUNTU
oval:org.mitre.oval:def:9768
vdb-entry
signature
x_refsource_OVAL
USN-323-1
vendor-advisory
x_refsource_UBUNTU
20561
third-party-advisory
x_refsource_SECUNIA
21210
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0594
vendor-advisory
x_refsource_REDHAT
21336
third-party-advisory
x_refsource_SECUNIA
20060602 rPSA-2006-0091-1 firefox thunderbird
mailing-list
x_refsource_BUGTRAQ
RHSA-2006:0610
vendor-advisory
x_refsource_REDHAT
20376
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0609
vendor-advisory
x_refsource_REDHAT
21178
third-party-advisory
x_refsource_SECUNIA
1016202
vdb-entry
x_refsource_SECTRACK
18228
vdb-entry
x_refsource_BID
21532
third-party-advisory
x_refsource_SECUNIA
21270
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0083
vdb-entry
x_refsource_VUPEN
21188
third-party-advisory
x_refsource_SECUNIA
21134
third-party-advisory
x_refsource_SECUNIA
21631
third-party-advisory
x_refsource_SECUNIA
SSRT061181
vendor-advisory
x_refsource_HP
USN-296-2
vendor-advisory
x_refsource_UBUNTU
DSA-1118
vendor-advisory
x_refsource_DEBIAN
HPSBUX02153
vendor-advisory
x_refsource_HP
DSA-1120
vendor-advisory
x_refsource_DEBIAN
RHSA-2006:0611
vendor-advisory
x_refsource_REDHAT
DSA-1134
vendor-advisory
x_refsource_DEBIAN
GLSA-200606-12
vendor-advisory
x_refsource_GENTOO
21324
third-party-advisory
x_refsource_SECUNIA
21183
third-party-advisory
x_refsource_SECUNIA
22066
third-party-advisory
x_refsource_SECUNIA
21269
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:035
vendor-advisory
x_refsource_SUSE
RHSA-2006:0578
vendor-advisory
x_refsource_REDHAT
ADV-2006-2106
vdb-entry
x_refsource_VUPEN
MDKSA-2006:143
vendor-advisory
x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now