CVE-2006-2777

Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are executed in a privileged context.

Affected Software

Name	Vendor	Start Version	End Version
Firefox	Mozilla	*	1.5.0.3 (including)
Firefox	Mozilla	0.8 (including)	0.8 (including)
Firefox	Mozilla	0.9 (including)	0.9 (including)
Firefox	Mozilla	0.9-rc (including)	0.9-rc (including)
Firefox	Mozilla	0.9.1 (including)	0.9.1 (including)
Firefox	Mozilla	0.9.2 (including)	0.9.2 (including)
Firefox	Mozilla	0.9.3 (including)	0.9.3 (including)
Firefox	Mozilla	0.10 (including)	0.10 (including)
Firefox	Mozilla	0.10.1 (including)	0.10.1 (including)
Firefox	Mozilla	1.0 (including)	1.0 (including)
Firefox	Mozilla	1.0.1 (including)	1.0.1 (including)
Firefox	Mozilla	1.0.2 (including)	1.0.2 (including)
Firefox	Mozilla	1.0.3 (including)	1.0.3 (including)
Firefox	Mozilla	1.0.4 (including)	1.0.4 (including)
Firefox	Mozilla	1.0.5 (including)	1.0.5 (including)
Firefox	Mozilla	1.0.6 (including)	1.0.6 (including)
Firefox	Mozilla	1.0.7 (including)	1.0.7 (including)
Firefox	Mozilla	1.5 (including)	1.5 (including)
Firefox	Mozilla	1.5-beta1 (including)	1.5-beta1 (including)
Firefox	Mozilla	1.5-beta2 (including)	1.5-beta2 (including)
Firefox	Mozilla	1.5.0.1 (including)	1.5.0.1 (including)
Firefox	Mozilla	1.5.0.2 (including)	1.5.0.2 (including)
Seamonkey	Mozilla	*	1.0 (including)
Seamonkey	Mozilla	1.0 (including)	1.0 (including)
Firefox	Ubuntu	dapper	*
Firefox-granparadiso	Ubuntu	devel	*
Lightning-sunbird	Ubuntu	devel	*
Midbrowser	Ubuntu	devel	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-2777
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References