CVE-2006-4568
published 2006-09-15CVE-2006-4568: Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another…
PriorityP414medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.16%
80.0th percentile
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
Affected
49 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 1.5.dfsg+1.5.0.7-1 (sid) | firefox 1.5.dfsg+1.5.0.7-1 (sid) |
| debian | thunderbird | < firefox 1.5.dfsg+1.5.0.7-1 (sid) | firefox 1.5.dfsg+1.5.0.7-1 (sid) |
| mozilla | firefox | <= 2.0.0.4 | — |
| mozilla | firefox | <= 1.5.0.6 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_ubuntu7.6HIGH
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2007-06-04·CVSS 4.3
CVE-2007-3089 [MEDIUM] security flaw
security flaw
Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystroke values from window.event, aka the "promiscuous IFRAME access bug," a related issue to CVE-2006-4568.
Ubuntu
Mozilla vulnerabilities
vendor_ubuntu·2006-10-10·CVSS 7.5
CVE-2006-2788 [HIGH] Mozilla vulnerabilities
Title: Mozilla vulnerabilities
Summary: Mozilla vulnerabilities
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious URL. (CVE-2006-2788, CVE-2006-3805, CVE-2006-3806,
CVE-2006-3807, CVE-2006-3809, CVE-2006-3811, CVE-2006-4565,
CVE-2006-4568, CVE-2006-4571)
A bug was found in the script handler for automatic proxy
configuration. A malicious proxy could send scripts which could
execute arbitrary code with the user's privileges. (CVE-2006-3808)
The NSS library did not sufficiently check the padding of PKCS #1 v1.5
signatures if the exponent of the public key is 3 (which is widely
used for CAs). This could be exploited to forge valid signatures
without the need of the secret key. (CVE-2006-4340
Ubuntu
firefox vulnerabilities
vendor_ubuntu·2006-09-23·CVSS 7.6
CVE-2006-4571 [HIGH] firefox vulnerabilities
Title: firefox vulnerabilities
Summary: firefox vulnerabilities
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious web page containing JavaScript. (CVE-2006-4253,
CVE-2006-4565, CVE-2006-4566, CVE-2006-4568, CVE-2006-4569
CVE-2006-4571)
The NSS library did not sufficiently check the padding of PKCS #1 v1.5
signatures if the exponent of the public key is 3 (which is widely
used for CAs). This could be exploited to forge valid signatures
without the need of the secret key. (CVE-2006-4340)
Jon Oberheide reported a way how a remote attacker could trick users
into downloading arbitrary extensions with circumventing the normal
SSL certificate check. The attacker would have to be in a position to
Red Hat
security flaw
vendor_redhat·2006-09-15·CVSS 4.3
CVE-2006-4568 [MEDIUM] security flaw
security flaw
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
Debian
CVE-2006-4568: firefox - Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attacker...
vendor_debian·2006·CVSS 4.3
CVE-2006-4568 [MEDIUM] CVE-2006-4568: firefox - Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attacker...
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.7-1)
GHSA
GHSA-w739-3fq5-fgvp: Mozilla Firefox before 2
ghsa_unreviewed·2022-05-03·CVSS 4.3
CVE-2007-3089 [MEDIUM] GHSA-w739-3fq5-fgvp: Mozilla Firefox before 2
Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystroke values from window.event, aka the "promiscuous IFRAME access bug," a related issue to CVE-2006-4568.
GHSA
GHSA-xg52-wr75-9hc5: Mozilla Firefox before 1
ghsa_unreviewed·2022-05-03
CVE-2006-4568 [MEDIUM] CWE-79 GHSA-xg52-wr75-9hc5: Mozilla Firefox before 1
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
OSV
CVE-2006-4568: Mozilla Firefox before 1
osv·2006-09-15·CVSS 4.3
CVE-2006-4568 [MEDIUM] CVE-2006-4568: Mozilla Firefox before 1
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-3089 security flaw
bugzilla·2018-08-16·CVSS 4.3
CVE-2007-3089 [MEDIUM] CVE-2007-3089 security flaw
CVE-2007-3089 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME (1) during the load stage or (2) in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystroke values from window.event, aka the "promiscuous IFRAME access bug," a related issue to CVE-2006-4568.
Bugzilla
CVE-2006-4568 security flaw
bugzilla·2018-08-16·CVSS 4.3
CVE-2006-4568 [MEDIUM] CVE-2006-4568 security flaw
CVE-2006-4568 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows remote attackers to bypass the security model and inject content into the sub-frame of another site via targetWindow.frames[n].document.open(), which facilitates spoofing and other attacks.
Bugzilla
CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
bugzilla·2006-09-14·CVSS 7.6
CVE-2006-4340 [HIGH] CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
** MFSA-2006-57 **
Two flaws were found in the way Firefox processed certain
regular expressions. A malicious web page could crash the
browser or possibly execute arbitrary code as the user running
Firefox. (CVE-2006-4565, CVE-2006-4566)
CVE-2006-4565 https://bugzilla.mozilla.org/show_bug.cgi?id=346090
CVE-2006-4566 https://bugzilla.mozilla.org/show_bug.cgi?id=346794
impact=critical,public=20060914
** MFSA-2006-58 **
A flaw was found in the Firefox auto-update verfication
system. An attacker who has the ability to spoof a victim's
DNS could get Firefox to download and install malicious code.
In order to exploit this issue an attacker would also need to
Bugzilla
CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
bugzilla·2006-09-14·CVSS 7.6
CVE-2006-4340 [HIGH] CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
** MFSA-2006-57 **
Two flaws were found in the way Firefox processed certain
regular expressions. A malicious web page could crash the
browser or possibly execute arbitrary code as the user running
Firefox. (CVE-2006-4565, CVE-2006-4566)
CVE-2006-4565 https://bugzilla.mozilla.org/show_bug.cgi?id=346090
CVE-2006-4566 https://bugzilla.mozilla.org/show_bug.cgi?id=346794
impact=critical,public=20060914
** MFSA-2006-58 **
A flaw was found in the Firefox auto-update verfication
system. An attacker who has the ability to spoof a victim's
DNS could get Firefox to download and install malicious code.
In order to exploit this issue an attacker would a
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://secunia.com/advisories/21906http://secunia.com/advisories/21915http://secunia.com/advisories/21940http://secunia.com/advisories/21949http://secunia.com/advisories/21950http://secunia.com/advisories/22001http://secunia.com/advisories/22025http://secunia.com/advisories/22036http://secunia.com/advisories/22056http://secunia.com/advisories/22066http://secunia.com/advisories/22195http://secunia.com/advisories/22210http://secunia.com/advisories/22247http://secunia.com/advisories/22299http://secunia.com/advisories/22342http://secunia.com/advisories/22391http://secunia.com/advisories/22422http://secunia.com/advisories/22849http://secunia.com/advisories/24711http://security.gentoo.org/glsa/glsa-200609-19.xmlhttp://security.gentoo.org/glsa/glsa-200610-04.xmlhttp://securitytracker.com/id?1016855http://securitytracker.com/id?1016856http://support.avaya.com/elmodocs2/security/ASA-2006-224.htmhttp://www.debian.org/security/2006/dsa-1192http://www.debian.org/security/2006/dsa-1210http://www.mandriva.com/security/advisories?name=MDKSA-2006:168http://www.mozilla.org/security/announce/2006/mfsa2006-61.htmlhttp://www.novell.com/linux/security/advisories/2006_54_mozilla.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0675.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0676.htmlhttp://www.securityfocus.com/archive/1/446140/100/0/threadedhttp://www.securityfocus.com/bid/20042http://www.ubuntu.com/usn/usn-351-1http://www.ubuntu.com/usn/usn-354-1http://www.ubuntu.com/usn/usn-361-1http://www.us.debian.org/security/2006/dsa-1191http://www.vupen.com/english/advisories/2006/3617http://www.vupen.com/english/advisories/2006/3748http://www.vupen.com/english/advisories/2007/1198http://www.vupen.com/english/advisories/2008/0083http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742https://bugzilla.mozilla.org/show_bug.cgi?id=343168https://exchange.xforce.ibmcloud.com/vulnerabilities/28961https://issues.rpath.com/browse/RPL-640https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9843ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://secunia.com/advisories/21906http://secunia.com/advisories/21915http://secunia.com/advisories/21940http://secunia.com/advisories/21949http://secunia.com/advisories/21950http://secunia.com/advisories/22001http://secunia.com/advisories/22025http://secunia.com/advisories/22036http://secunia.com/advisories/22056http://secunia.com/advisories/22066http://secunia.com/advisories/22195http://secunia.com/advisories/22210http://secunia.com/advisories/22247http://secunia.com/advisories/22299http://secunia.com/advisories/22342http://secunia.com/advisories/22391http://secunia.com/advisories/22422http://secunia.com/advisories/22849http://secunia.com/advisories/24711http://security.gentoo.org/glsa/glsa-200609-19.xmlhttp://security.gentoo.org/glsa/glsa-200610-04.xmlhttp://securitytracker.com/id?1016855http://securitytracker.com/id?1016856http://support.avaya.com/elmodocs2/security/ASA-2006-224.htmhttp://www.debian.org/security/2006/dsa-1192http://www.debian.org/security/2006/dsa-1210http://www.mandriva.com/security/advisories?name=MDKSA-2006:168http://www.mozilla.org/security/announce/2006/mfsa2006-61.htmlhttp://www.novell.com/linux/security/advisories/2006_54_mozilla.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0675.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0676.htmlhttp://www.securityfocus.com/archive/1/446140/100/0/threadedhttp://www.securityfocus.com/bid/20042http://www.ubuntu.com/usn/usn-351-1http://www.ubuntu.com/usn/usn-354-1http://www.ubuntu.com/usn/usn-361-1http://www.us.debian.org/security/2006/dsa-1191http://www.vupen.com/english/advisories/2006/3617http://www.vupen.com/english/advisories/2006/3748http://www.vupen.com/english/advisories/2007/1198http://www.vupen.com/english/advisories/2008/0083http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742https://bugzilla.mozilla.org/show_bug.cgi?id=343168https://exchange.xforce.ibmcloud.com/vulnerabilities/28961https://issues.rpath.com/browse/RPL-640https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9843
2006-09-15
Published