CVE-2006-3677

HIGH

Description

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.

ID	Name	Product	Family	Severity
67424	Oracle Linux 4 : thunderbird (ELSA-2006-0735 / ELSA-2006-0677 / ELBA-2006-0624 / ELSA-2006-0611)	Nessus	Oracle Linux Local Security Checks	critical
67422	Oracle Linux 4 : firefox (ELSA-2006-0733 / ELSA-2006-0675 / ELSA-2006-0610)	Nessus	Oracle Linux Local Security Checks	critical
29354	SuSE 10 Security Update : Firefox (ZYPP Patch Number 1960)	Nessus	SuSE Local Security Checks	high
27905	Ubuntu 6.06 LTS : firefox vulnerabilities (USN-327-1)	Nessus	Ubuntu Local Security Checks	critical
23892	Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2006:143-1)	Nessus	Mandriva Local Security Checks	critical
22291	RHEL 2.1 : seamonkey (RHSA-2006:0594)	Nessus	Red Hat Local Security Checks	high
22163	CentOS 4 : seamonkey (CESA-2006:0609)	Nessus	CentOS Local Security Checks	high
22162	CentOS 3 : seamonkey (CESA-2006:0608)	Nessus	CentOS Local Security Checks	high
22150	RHEL 4 : seamonkey (RHSA-2006:0609)	Nessus	Red Hat Local Security Checks	high
22145	GLSA-200608-03 : Mozilla Firefox: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
22144	GLSA-200608-02 : Mozilla SeaMonkey: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
22138	CentOS 4 : thunderbird (CESA-2006:0611)	Nessus	CentOS Local Security Checks	high
22137	CentOS 4 : Firefox (CESA-2006:0610)	Nessus	CentOS Local Security Checks	high
22122	RHEL 4 : thunderbird (RHSA-2006:0611)	Nessus	Red Hat Local Security Checks	high
22121	RHEL 4 : firefox (RHSA-2006:0610)	Nessus	Red Hat Local Security Checks	high
22114	RHEL 3 : seamonkey (RHSA-2006:0608)	Nessus	Red Hat Local Security Checks	high
22105	FreeBSD : mozilla -- multiple vulnerabilities (e2a92664-1d60-11db-88cf-000c6ec775d9)	Nessus	FreeBSD Local Security Checks	high
3695	Mozilla Firefox 1.5.x < 1.5.0.5 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	medium
3694	Mozilla Thunderbird < 1.5.0.5 Multiple Vulnerabilities (deprecated)	Nessus Network Monitor	SMTP Clients	medium
22097	SeaMonkey < 1.0.3 Multiple Vulnerabilities	Nessus	Windows	high
22095	Firefox < 1.5.0.5 Multiple Vulnerabilities	Nessus	Windows	high
801227	Mozilla Thunderbird < 1.5.0.5 Multiple Vulnerabilities	Log Correlation Engine	SMTP Clients	high
800763	Firefox < 1.5.0.5 Multiple Vulnerabilities	Log Correlation Engine	Web Clients	high

CVE-2006-3677

Description

References

Details

Risk Information

CVSS v2.0