CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
99.0%
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious web page containing JavaScript or SVG. (CVE-2006-6497,
CVE-2006-6498, CVE-2006-6499, CVE-2006-6501, CVE-2006-6502,
CVE-2006-6504)
Various flaws have been reported that allow an attacker to bypass
Firefox’s internal XSS protections by tricking the user into opening a
malicious web page containing JavaScript. (CVE-2006-6503,
CVE-2006-6507)
Jared Breland discovered that the “Feed Preview” feature could leak
referrer information to remote servers. (CVE-2006-6506)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 6.10 | noarch | firefox | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |
Ubuntu | 6.10 | noarch | firefox-dev | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |
Ubuntu | 6.10 | noarch | libnss-dev | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |
Ubuntu | 6.10 | noarch | libnss3 | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |
Ubuntu | 6.10 | noarch | libnspr-dev | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |
Ubuntu | 6.10 | noarch | libnspr4 | < 2.0.0.1+0dfsg-0ubuntu0.6.10 | UNKNOWN |