Description Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using the Object.watch method to access the "clone parent" internal function.
CVSS vector AV:N/AC:M/C:P/I:P/A:P Exploitability: 8.6 | Impact: 6.4 Affected Packages5 packages
🔴 Vulnerability Details3 GHSA GHSA-pc38-w37f-288f: Mozilla Firefox and Thunderbird 1 ↗ 2022-05-03 ▶ CVEList CVE-2006-1734: Mozilla Firefox and Thunderbird 1 ↗ 2006-04-14 ▶ OSV CVE-2006-1734: Mozilla Firefox and Thunderbird 1 ↗ 2006-04-14 ▶
📋 Vendor Advisories5 Ubuntu Thunderbird vulnerabilities ↗ 2006-05-03 ▶ Ubuntu Mozilla vulnerabilities ↗ 2006-04-28 ▶ Ubuntu Firefox vulnerabilities ↗ 2006-04-20 ▶ Debian CVE-2006-1734: firefox - Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla S... ↗ 2006 ▶
💬 Community7 Bugzilla CVE-2006-1734 security flaw ↗ 2018-08-16 ▶ Bugzilla CVE-2006-1734 Privilege escalation using a JavaScript function's cloned parent ↗ 2006-04-13 ▶ Bugzilla CVE-2006-1734 Privilege escalation using a JavaScript function's cloned parent ↗ 2006-04-13 ▶ Bugzilla CVE-2006-1734 Privilege escalation using a JavaScript function's cloned parent ↗ 2006-04-13 ▶ Bugzilla CVE-2006-1734 Privilege escalation using a JavaScript function's cloned parent ↗ 2006-04-13 ▶ Show 2 more