CVE-2006-6501 — Mozilla Firefox vulnerability

CWE-26414 documents7 sources

Severity

6.8MEDIUMNVD

EPSS

28.7%

top 3.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird +4 more

Timeline

PublishedDec 20

Latest updateMay 3

Description

Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages5 packages

▶NVDmozilla/firefox1.5 — 1.5.0.9+1

▶NVDmozilla/seamonkey< 1.0.7

▶NVDmozilla/thunderbird< 1.5.0.9

▶debiandebian/firefox< firefox 45.0-1 (sid)

▶debiandebian/firefox-esr< firefox 45.0-1 (sid)

Also affects: Debian Linux 3.1, 4.0, Ubuntu Linux 5.10, 6.06, 6.10

🔴Vulnerability Details

GHSA

GHSA-rm85-grxg-qm94: Unspecified vulnerability in Mozilla Firefox 2↗2022-05-03

▶

OSV

CVE-2006-6501: Unspecified vulnerability in Mozilla Firefox 2↗2006-12-20

▶

📋Vendor Advisories

Ubuntu

Firefox regression↗2007-01-27

▶

Ubuntu

Thunderbird vulnerabilities↗2007-01-05

▶

Ubuntu

Firefox vulnerabilities↗2007-01-03

▶

Ubuntu

Firefox vulnerabilities↗2007-01-03

▶

Red Hat

security flaw↗2006-12-19

▶

💬Community

Bugzilla

CVE-2006-6501 security flaw↗2018-08-16

▶

Bugzilla

seamonkey < 1.0.7 multiple vulnerabilities↗2006-12-21

▶

Bugzilla

CVE-2006-6497 Multiple Thunderbird issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6505)↗2006-12-14

▶

Bugzilla

CVE-2006-6497 Multiple Seamonkey issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6505)↗2006-12-14

▶

Bugzilla

CVE-2006-6497 Multiple Firefox issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504)↗2006-12-14

▶