CVE-2006-0295
CVE-2006-0295
Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 3
exploitdbwww.exploit-db.com/exploits/1474não verificadoexploitdbwww.exploit-db.com/exploits/16301não verificadoexploitdbwww.exploit-db.com/exploits/1480não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://bugzilla.mozilla.org/show_bug.cgi?id=319296http://secunia.com/advisories/18700http://secunia.com/advisories/18704http://secunia.com/advisories/22065http://securitytracker.com/id?1015570https://exchange.xforce.ibmcloud.com/vulnerabilities/24433https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1562http://www.kb.cert.org/vuls/id/759273http://www.mozilla.org/security/announce/2006/mfsa2006-04.htmlhttp://www.securityfocus.com/archive/1/446657/100/200/threadedhttp://www.securityfocus.com/bid/16476http://www.us-cert.gov/cas/techalerts/TA06-038A.html