← back
CVE-2006-4570

CVE-2006-4570

EPSS 2.3%
Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows remote user-assisted attackers to bypass settings that disable JavaScript via a remote XBL file in a message that is loaded when the user views, forwards, or replies to the original message.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://secunia.com/advisories/21915http://secunia.com/advisories/21916http://secunia.com/advisories/21939http://secunia.com/advisories/21940http://secunia.com/advisories/22036http://secunia.com/advisories/22055http://secunia.com/advisories/22056http://secunia.com/advisories/22074http://secunia.com/advisories/22088http://secunia.com/advisories/22247http://secunia.com/advisories/22274