Back to search
CVE-2006-2785
Published: Jun 2, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 1.5.0.4 allows user-assisted remote attackers to inject arbitrary web script or HTML by tricking a user into (1) performing a "View Image" on a broken image in which the SRC attribute contains a Javascript URL, or (2) selecting "Show only this frame" on a frame whose SRC attribute contains a Javascript URL.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
21176
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:145
vendor-advisory
x_refsource_MANDRIVA
ADV-2006-3748
vdb-entry
x_refsource_VUPEN
USN-296-1
vendor-advisory
x_refsource_UBUNTU
USN-323-1
vendor-advisory
x_refsource_UBUNTU
20561
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0594
vendor-advisory
x_refsource_REDHAT
21336
third-party-advisory
x_refsource_SECUNIA
20060602 rPSA-2006-0091-1 firefox thunderbird
mailing-list
x_refsource_BUGTRAQ
RHSA-2006:0610
vendor-advisory
x_refsource_REDHAT
20376
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0609
vendor-advisory
x_refsource_REDHAT
mozilla-viewimage-xss(26845)
vdb-entry
x_refsource_XF
21178
third-party-advisory
x_refsource_SECUNIA
1016202
vdb-entry
x_refsource_SECTRACK
18228
vdb-entry
x_refsource_BID
21532
third-party-advisory
x_refsource_SECUNIA
21270
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0083
vdb-entry
x_refsource_VUPEN
http://www.mozilla.org/security/announce/2006/mfsa2006-34.html
x_refsource_CONFIRM
21188
third-party-advisory
x_refsource_SECUNIA
21134
third-party-advisory
x_refsource_SECUNIA
21631
third-party-advisory
x_refsource_SECUNIA
SSRT061181
vendor-advisory
x_refsource_HP
oval:org.mitre.oval:def:10545
vdb-entry
signature
x_refsource_OVAL
USN-296-2
vendor-advisory
x_refsource_UBUNTU
DSA-1118
vendor-advisory
x_refsource_DEBIAN
HPSBUX02153
vendor-advisory
x_refsource_HP
DSA-1120
vendor-advisory
x_refsource_DEBIAN
RHSA-2006:0611
vendor-advisory
x_refsource_REDHAT
DSA-1134
vendor-advisory
x_refsource_DEBIAN
GLSA-200606-12
vendor-advisory
x_refsource_GENTOO
21324
third-party-advisory
x_refsource_SECUNIA
21183
third-party-advisory
x_refsource_SECUNIA
22066
third-party-advisory
x_refsource_SECUNIA
21269
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:035
vendor-advisory
x_refsource_SUSE
RHSA-2006:0578
vendor-advisory
x_refsource_REDHAT
ADV-2006-2106
vdb-entry
x_refsource_VUPEN
MDKSA-2006:143
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now