CVE-2006-6503

Published: Dec 20, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: URI.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

VU#405092

third-party-advisory

x_refsource_CERT-VN

21668

vdb-entry

x_refsource_BID

23433

third-party-advisory

x_refsource_SECUNIA

MDKSA-2007:010

vendor-advisory

x_refsource_MANDRIVA

23439

third-party-advisory

x_refsource_SECUNIA

1017414

vdb-entry

x_refsource_SECTRACK

23672

third-party-advisory

x_refsource_SECUNIA

ADV-2006-5068

vdb-entry

x_refsource_VUPEN

23468

third-party-advisory

x_refsource_SECUNIA

23598

third-party-advisory

x_refsource_SECUNIA

RHSA-2006:0758

vendor-advisory

x_refsource_REDHAT

DSA-1265

vendor-advisory

x_refsource_DEBIAN

24078

third-party-advisory

x_refsource_SECUNIA

23692

third-party-advisory

x_refsource_SECUNIA

USN-398-2

vendor-advisory

x_refsource_UBUNTU

GLSA-200701-04

vendor-advisory

x_refsource_GENTOO

23282

third-party-advisory

x_refsource_SECUNIA

24390

third-party-advisory

x_refsource_SECUNIA

FEDORA-2006-1491

vendor-advisory

x_refsource_FEDORA

23422

third-party-advisory

x_refsource_SECUNIA

1017416

vdb-entry

x_refsource_SECTRACK

HPSBUX02153

vendor-advisory

x_refsource_HP

23591

third-party-advisory

x_refsource_SECUNIA

23614

third-party-advisory

x_refsource_SECUNIA

RHSA-2006:0759

vendor-advisory

x_refsource_REDHAT

USN-398-1

vendor-advisory

x_refsource_UBUNTU

ADV-2008-0083

vdb-entry

x_refsource_VUPEN

FEDORA-2007-004

vendor-advisory

x_refsource_FEDORA

23420

third-party-advisory

x_refsource_SECUNIA

23440

third-party-advisory

x_refsource_SECUNIA

http://www.mozilla.org/security/announce/2006/mfsa2006-72.html

x_refsource_CONFIRM

SUSE-SA:2006:080

vendor-advisory

x_refsource_SUSE

20061222 rPSA-2006-0234-1 firefox

mailing-list

x_refsource_BUGTRAQ

23545

third-party-advisory

x_refsource_SECUNIA

23618

third-party-advisory

x_refsource_SECUNIA

GLSA-200701-03

vendor-advisory

x_refsource_GENTOO

oval:org.mitre.oval:def:10895

vdb-entry

signature

x_refsource_OVAL

TA06-354A

third-party-advisory

x_refsource_CERT

23589

third-party-advisory

x_refsource_SECUNIA

DSA-1253

vendor-advisory

x_refsource_DEBIAN

DSA-1258

vendor-advisory

x_refsource_DEBIAN

SSRT061181

vendor-advisory

x_refsource_HP

https://issues.rpath.com/browse/RPL-883

x_refsource_CONFIRM

20070102 rPSA-2006-0234-2 firefox thunderbird

mailing-list

x_refsource_BUGTRAQ

SUSE-SA:2007:006

vendor-advisory

x_refsource_SUSE

23601

third-party-advisory

x_refsource_SECUNIA

1017415

vdb-entry

x_refsource_SECTRACK

23988

third-party-advisory

x_refsource_SECUNIA

MDKSA-2007:011

vendor-advisory

x_refsource_MANDRIVA

23514

third-party-advisory

x_refsource_SECUNIA

GLSA-200701-02

vendor-advisory

x_refsource_GENTOO

RHSA-2006:0760

vendor-advisory

x_refsource_REDHAT

USN-400-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-6503

Description

Affected Products

References