CVE Vulnerabilities

CVE-2006-3677

Published: Jul 27, 2006 | Modified: Oct 18, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.

Affected Software

Name Vendor Start Version End Version
Seamonkey Mozilla 1.0.1 1.0.1
Firefox Mozilla 1.5.0.3 1.5.0.3
Seamonkey Mozilla 1.0 1.0
Firefox Mozilla 1.5 1.5
Seamonkey Mozilla 1.0.2 1.0.2
Firefox Mozilla 1.5.0.2 1.5.0.2
Seamonkey Mozilla 1.0 1.0
Firefox Mozilla 1.5.0.4 1.5.0.4
Firefox Mozilla 1.5.0.1 1.5.0.1

References