Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2006-3677
HistoryJul 27, 2006 - 7:04 p.m.

CVE-2006-3677

2006-07-2719:04:00
CWE-16
[email protected]
web.nvd.nist.gov
6

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.974

Percentile

99.9%

JSON

Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.

Affected configurations

Nvd
Node
mozillafirefoxMatch1.5
OR
mozillafirefoxMatch1.5.0.1
OR
mozillafirefoxMatch1.5.0.2
OR
mozillafirefoxMatch1.5.0.3
OR
mozillafirefoxMatch1.5.0.4
OR
mozillaseamonkeyMatch1.0
OR
mozillaseamonkeyMatch1.0dev
OR
mozillaseamonkeyMatch1.0.1
OR
mozillaseamonkeyMatch1.0.2
VendorProductVersionCPE
mozillafirefox1.5cpe:2.3:a:mozilla:firefox:1.5:*:*:*:*:*:*:*
mozillafirefox1.5.0.1cpe:2.3:a:mozilla:firefox:1.5.0.1:*:*:*:*:*:*:*
mozillafirefox1.5.0.2cpe:2.3:a:mozilla:firefox:1.5.0.2:*:*:*:*:*:*:*
mozillafirefox1.5.0.3cpe:2.3:a:mozilla:firefox:1.5.0.3:*:*:*:*:*:*:*
mozillafirefox1.5.0.4cpe:2.3:a:mozilla:firefox:1.5.0.4:*:*:*:*:*:*:*
mozillaseamonkey1.0cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
mozillaseamonkey1.0cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*
mozillaseamonkey1.0.1cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
mozillaseamonkey1.0.2cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*

References

Related

saint 4
exploitdb 3
checkpoint_advisories 2
securityvulns 3
mozilla 1
cert 1
debiancve 1
zdi 1
exploitpack 1
seebug 3
packetstorm 1
ubuntucve 1
zdt 1
cvelist 2
cve 2
prion 1
nvd 1
nessus 21
openvas 7
gentoo 2
ubuntu 1
redhat 5
freebsd 1
suse 1
centos 5
oraclelinux 2
saint
saint
Mozilla Firefox JavaScript Navigator object vulnerability
2006-08-14 00:00:00
Mozilla Firefox JavaScript Navigator object vulnerability
2006-08-14 00:00:00
Mozilla Firefox JavaScript Navigator object vulnerability
2006-08-14 00:00:00
exploitdb
exploitdb
Mozilla Suite/Firefox < 1.5.0.5 - Navigator Object Code Execution (Metasploit)
2006-07-25 00:00:00
Mozilla Suite/Firefox - Navigator Object Code Execution (Metasploit)
2010-09-20 00:00:00
Mozilla Firefox 1.5.0.4 - JavaScript Navigator Object Code Execution
2006-07-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Browsers JavaScript Navigator Object Memory Corruption - Ver2 (CVE-2006-3677)
2014-04-16 00:00:00
Mozilla Browsers JavaScript Navigator Object Memory Corruption - Ver2 (CVE-2006-3677)
2014-04-16 00:00:00
securityvulns
securityvulns
[Full-disclosure] ZDI-06-025: Mozilla Firefox Javascript navigator Object Vulnerability
2006-07-27 00:00:00
Netscape/K-Meleon/Flock JavaScript navigator Vulnerability
2006-08-02 00:00:00
US-CERT Technical Cyber Security Alert TA06-208A -- Mozilla Products Contain Multiple Vulnerabilities
2006-07-28 00:00:00
mozilla
mozilla
Javascript navigator Object Vulnerability — Mozilla
2006-07-25 00:00:00
cert
cert
Mozilla fails to properly release JavaScript references
2006-07-27 00:00:00
debiancve
debiancve
CVE-2006-3677
2006-07-27 19:04:00
zdi
zdi
Mozilla Firefox Javascript navigator Object Vulnerability
2006-07-26 00:00:00
exploitpack
exploitpack
Mozilla Firefox 1.5.0.4 - JavaScript Navigator Object Code Execution
2006-07-28 00:00:00
seebug
seebug
Mozilla Firefox <= 1.5.0.4 - Javascript Navigator Object Code Execution PoC
2014-07-01 00:00:00
Mozilla Firefox Javascript Navigator Object Remote Code Execution Vulnerability
2006-10-24 00:00:00
Mozilla Firefox &lt;= 1.5.0.4 Javascript Navigator Object Code Execution PoC
2006-07-28 00:00:00
packetstorm
packetstorm
Mozilla Suite/Firefox Navigator Object Code Execution
2009-10-27 00:00:00
ubuntucve
ubuntucve
CVE-2006-3677
2006-07-27 00:00:00
zdt
zdt
Mozilla Firefox <= 1.5.0.4 Javascript Navigator Object Code Execution PoC
2006-07-28 00:00:00
cvelist
cvelist
CVE-2006-3677
2006-07-27 19:00:00
CVE-2008-0729
2008-02-12 20:00:00
cve
cve
CVE-2006-3677
2006-07-27 19:04:00
CVE-2008-0729
2008-02-12 21:00:00
prion
prion
Design/Logic Flaw
2008-02-12 21:00:00
nvd
nvd
CVE-2008-0729
2008-02-12 21:00:00
nessus
nessus
GLSA-200608-03 : Mozilla Firefox: Multiple vulnerabilities
2006-08-04 00:00:00
openSUSE 10 Security Update : seamonkey (seamonkey-1952)
2007-10-17 00:00:00
Firefox < 1.5.0.5 Multiple Vulnerabilities
2006-07-27 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-327-1)
2022-08-26 00:00:00
Gentoo Security Advisory GLSA 200608-03 (Firefox)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200608-03 (Firefox)
2008-09-24 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2006-08-03 00:00:00
Mozilla SeaMonkey: Multiple vulnerabilities
2006-08-03 00:00:00
ubuntu
ubuntu
firefox vulnerabilities
2006-07-28 00:00:00
redhat
redhat
(RHSA-2006:0608) seamonkey security update
2006-07-27 00:00:00
(RHSA-2006:0610) firefox security update
2006-07-28 00:00:00
(RHSA-2006:0611) thunderbird security update
2006-07-28 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2006-07-25 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2006-08-16 15:11:18
centos
centos
seamonkey security update
2006-08-04 20:56:41
thunderbird security update
2006-07-29 11:51:27
firefox security update
2006-07-29 11:51:13
oraclelinux
oraclelinux
Critical thunderbird security update
2006-12-07 00:00:00
Critical firefox security update
2006-12-07 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.974

Percentile

99.9%

JSON
Related for NVD:CVE-2006-3677
saint4exploitdb3checkpoint_advisories2securityvulns3mozilla1cert1debiancve1zdi1exploitpack1seebug3packetstorm1ubuntucve1zdt1cvelist2cve2prion1nvd1nessus21openvas7gentoo2ubuntu1redhat5freebsd1suse1centos5oraclelinux2