CVE-2006-2777

Properties

Published:
01.06.2006
Updated:
17.10.2006
Patch available:
Severity:
High
CVSS vector:
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Product:
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox
Mozilla: Firefox

Vulnerability description

Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are executed in a privileged context.

References:

MOZILLA: http://www.mozilla.org/security/announce/2006/mfsa2006-43.html
CERT-VN: http://www.kb.cert.org/vuls/id/237257