CVE-2006-3677 Information

Feb 14, 2021 cve

Description

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up which causes a crash that leads to code execution.

Reference

ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc http://rhn.redhat.com/errata/RHSA-2006-0609.html http://secunia.com/advisories/19873 http://secunia.com/advisories/21216 http://secunia.com/advisories/21229 http://secunia.com/advisories/21243 http://secunia.com/advisories/21246 http://secunia.com/advisories/21262 http://secunia.com/advisories/21269 http://secunia.com/advisories/21270 http://secunia.com/advisories/21336 http://secunia.com/advisories/21343 http://secunia.com/advisories/21361 http://secunia.com/advisories/21529 http://secunia.com/advisories/21532 http://secunia.com/advisories/21631 http://secunia.com/advisories/22066 http://secunia.com/advisories/22210 http://security.gentoo.org/glsa/glsa-200608-02.xml http://securitytracker.com/id?1016586 http://securitytracker.com/id?1016587 http://www.gentoo.org/security/en/glsa/glsa-200608-03.xml http://www.kb.cert.org/vuls/id/670060 http://www.mandriva.com/security/advisories?name=MDKSA-2006:143 http://www.mandriva.com/security/advisories?name=MDKSA-2006:145 http://www.mozilla.org/security/announce/2006/mfsa2006-45.html http://www.novell.com/linux/security/advisories/2006_48_seamonkey.html http://www.redhat.com/support/errata/RHSA-2006-0594.html http://www.redhat.com/support/errata/RHSA-2006-0608.html http://www.redhat.com/support/errata/RHSA-2006-0610.html http://www.redhat.com/support/errata/RHSA-2006-0611.html http://www.securityfocus.com/archive/1/441332/100/0/threaded http://www.securityfocus.com/archive/1/441333/100/0/threaded http://www.securityfocus.com/archive/1/446658/100/200/threaded http://www.securityfocus.com/bid/19181 http://www.securityfocus.com/bid/19192 http://www.ubuntu.com/usn/usn-354-1 http://www.us-cert.gov/cas/techalerts/TA06-208A.html http://www.vupen.com/english/advisories/2006/2998 http://www.vupen.com/english/advisories/2006/3748 http://www.vupen.com/english/advisories/2008/0083 http://www.zerodayinitiative.com/advisories/ZDI-06-025.html https://exchange.xforce.ibmcloud.com/vulnerabilities/27981 https://exchange.xforce.ibmcloud.com/vulnerabilities/39998 https://issues.rpath.com/browse/RPL-536 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A10745 https://usn.ubuntu.com/327-1/

Share on: