Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-4570HistorySep 15, 2006 - 7:07 p.m.
CVE-2006-4570
2006-09-1519:07:00
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
EPSS
0.053
Percentile
93.1%
Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with “Load Images” enabled, allows remote user-assisted attackers to bypass settings that disable JavaScript via a remote XBL file in a message that is loaded when the user views, forwards, or replies to the original message.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | thunderbird | < 1.5.0.7-1 | thunderbird_1.5.0.7-1_all.deb |
| Debian | 11 | all | thunderbird | < 1.5.0.7-1 | thunderbird_1.5.0.7-1_all.deb |
| Debian | 999 | all | thunderbird | < 1.5.0.7-1 | thunderbird_1.5.0.7-1_all.deb |
| Debian | 13 | all | thunderbird | < 1.5.0.7-1 | thunderbird_1.5.0.7-1_all.deb |
Related
cvelist
cvelist
CVE-2006-4570
2006-09-15 19:00:00
nvd
nvd
CVE-2006-4570
2006-09-15 19:07:00
cve
cve
CVE-2006-4570
2006-09-15 19:07:00
veracode
veracode
Restriction Bypass
2020-04-10 00:13:13
mozilla
mozilla
JavaScript execution in mail via XBL — Mozilla
2006-09-14 00:00:00
ubuntucve
ubuntucve
CVE-2006-4570
2006-09-15 00:00:00
gentoo
gentoo
Seamonkey: Multiple vulnerabilities
2006-10-16 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2006-10-04 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200610-04 (seamonkey)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200610-04 (seamonkey)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200610-01 (thunderbird)
2008-09-24 00:00:00
nessus
nessus
GLSA-200610-04 : SeaMonkey: Multiple vulnerabilities
2006-10-20 00:00:00
Fedora Core 5 : thunderbird-1.5.0.7-1.fc5 (2006-977)
2007-01-17 00:00:00
Debian DSA-1191-1 : mozilla-thunderbird - several vulnerabilities
2006-10-14 00:00:00
oraclelinux
oraclelinux
Critical seamonkey security update
2006-12-07 00:00:00
Critical thunderbird security update
2006-12-07 00:00:00
centos
centos
thunderbird security update
2006-09-15 14:57:35
seamonkey security update
2006-09-17 23:20:54
devhelp, seamonkey security update
2006-09-15 14:57:11
redhat
redhat
(RHSA-2006:0677) thunderbird security update
2006-09-15 00:00:00
(RHSA-2006:0676) seamonkey security update
2006-09-15 00:00:00
osv
osv
mozilla
2006-10-06 00:00:00
mozilla-thunderbird
2006-10-05 00:00:00
debian
debian
ubuntu
ubuntu
Thunderbird vulnerabilities
2006-09-25 00:00:00
Mozilla vulnerabilities
2006-10-10 00:00:00
Thunderbird vulnerabilities
2006-09-22 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2006-09-14 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,seamonkey
2006-09-22 13:02:47
cert
cert
OpenSSL SSL_get_shared_ciphers() vulnerable to buffer overflow
2006-09-28 00:00:00
OpenSSL SSLv2 client code fails to properly check for NULL
2006-09-28 00:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
EPSS
0.053
Percentile
93.1%
Related for DEBIANCVE:CVE-2006-4570