Launchpad.net

CVE 2006-3677

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
MISC: http://www.zerodayinit...
CONFIRM: https://issues.rpath.c...
REDHAT: RHSA-2006:0608
CERT: TA06-208A
CERT-VN: VU#670060
BID: 19181
BID: 19192
SECTRACK: 1016586
SECTRACK: 1016587
SECUNIA: 19873
SECUNIA: 21216
SECUNIA: 21229
SECUNIA: 21246
GENTOO: GLSA-200608-02
REDHAT: RHSA-2006:0610
REDHAT: RHSA-2006:0611
REDHAT: RHSA-2006:0609
SECUNIA: 21243
SECUNIA: 21269
SECUNIA: 21270
SECUNIA: 21336
SECUNIA: 21361
GENTOO: GLSA-200608-03
SGI: 20060703-01-P
SECUNIA: 21262
SECUNIA: 21343
SUSE: SUSE-SA:2006:048
SECUNIA: 21529
SECUNIA: 21532
REDHAT: RHSA-2006:0594
SECUNIA: 21631
UBUNTU: USN-354-1
SECUNIA: 22210
SECUNIA: 22066
MANDRIVA: MDKSA-2006:143
MANDRIVA: MDKSA-2006:145
VUPEN: ADV-2006-2998
VUPEN: ADV-2006-3748
VUPEN: ADV-2008-0083
XF: mozilla-javascript-nav...
XF: iphone-mobilesafari-do...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-327-1
BUGTRAQ: 20060727 rPSA-2006-013...
BUGTRAQ: 20060726 ZDI-06-025: M...
HP: HPSBUX02153
HP: SSRT061181

Launchpad.net

CVE 2006-3677

Related bugs

References