Action not permitted
Modal body text goes here.
Modal Title
Modal Body
jvndb-2006-000326
Vulnerability from jvndb
Published
2008-05-21 00:00
Modified
2008-05-21 00:00
Summary
Mozilla Firefox vulnerable to HTTP response splitting
Details
(1)Mozilla Firefox contains a vulnerability in the way it interprets HTTP 1.0 responses from a server.
(2)Mozilla Firefox, a web browser from Mozilla Corporation and Mozilla Japan, fails to properly handles multiple HTTP headers in server responses.
References
Impacted products
{ "@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000326.html", "dc:date": "2008-05-21T00:00+09:00", "dcterms:issued": "2008-05-21T00:00+09:00", "dcterms:modified": "2008-05-21T00:00+09:00", description: "(1)Mozilla Firefox contains a vulnerability in the way it interprets HTTP 1.0 responses from a server.\r\n\r\n(2)Mozilla Firefox, a web browser from Mozilla Corporation and Mozilla Japan, fails to properly handles multiple HTTP headers in server responses.", link: "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000326.html", "sec:cpe": [ { "#text": "cpe:/a:mozilla:firefox", "@product": "Mozilla Firefox", "@vendor": "mozilla.org contributors", "@version": "2.2", }, { "#text": "cpe:/a:mozilla:seamonkey", "@product": "Mozilla SeaMonkey", "@vendor": "mozilla.org contributors", "@version": "2.2", }, { "#text": "cpe:/a:mozilla:thunderbird", "@product": "Mozilla Thunderbird", "@vendor": "mozilla.org contributors", "@version": "2.2", }, { "#text": "cpe:/o:hp:hp-ux", "@product": "HP-UX", "@vendor": "Hewlett-Packard Development Company,L.P", "@version": "2.2", }, { "#text": "cpe:/o:misc:miraclelinux_asianux_server", "@product": "Asianux Server", "@vendor": "Cybertrust Japan Co., Ltd.", "@version": "2.2", }, { "#text": "cpe:/o:redhat:enterprise_linux", "@product": "Red Hat Enterprise Linux", "@vendor": "Red Hat, Inc.", "@version": "2.2", }, { "#text": "cpe:/o:redhat:linux_advanced_workstation", "@product": "Red Hat Linux Advanced Workstation", "@vendor": "Red Hat, Inc.", "@version": "2.2", }, ], "sec:cvss": { "@score": "2.6", "@severity": "Low", "@type": "Base", "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N", "@version": "2.0", }, "sec:identifier": "JVNDB-2006-000326", "sec:references": [ { "#text": "http://jvn.jp/en/jp/JVN62734622/index.html", "@id": "JVN#62734622", "@source": "JVN", }, { "#text": "http://jvn.jp/en/jp/JVN28513736/index.html", "@id": "JVN#28513736", "@source": "JVN", }, { "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2786", "@id": "CVE-2006-2786", "@source": "CVE", }, { "#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-2786", "@id": "CVE-2006-2786", "@source": "NVD", }, { "#text": "http://www.securityfocus.com/bid/18228", "@id": "18228", "@source": "BID", }, { "#text": "http://www.frsirt.com/english/advisories/2006/2106", "@id": "FrSIRT/ADV-2006-2106", "@source": "FRSIRT", }, ], title: "Mozilla Firefox vulnerable to HTTP response splitting", }
cve-2006-2786
Vulnerability from cvelistv5
Published
2006-06-02 20:00
Modified
2024-08-07 18:06
Severity ?
EPSS score ?
Summary
HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T18:06:26.045Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "20709", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/20709", }, { name: "21176", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21176", }, { name: "MDKSA-2006:145", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:145", }, { name: "ADV-2006-3748", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2006/3748", }, { name: "USN-296-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/296-1/", }, { name: "mozilla-http-response-smuggling(26844)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/26844", }, { name: "USN-323-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/323-1/", }, { name: "20561", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/20561", }, { name: "oval:org.mitre.oval:def:9966", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9966", }, { name: "RHSA-2006:0594", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0594.html", }, { name: "21336", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21336", }, { name: "20382", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/20382", }, { name: "1016214", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://securitytracker.com/id?1016214", }, { name: "20060602 rPSA-2006-0091-1 firefox thunderbird", tags: [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/435795/100/0/threaded", }, { name: "ADV-2006-3749", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2006/3749", }, { name: "RHSA-2006:0610", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0610.html", }, { name: "20376", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/20376", }, { name: "RHSA-2006:0609", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2006-0609.html", }, { name: "21178", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21178", }, { name: "1016202", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://securitytracker.com/id?1016202", }, { name: "18228", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/18228", }, { name: "21532", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21532", }, { name: "21270", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21270", }, { name: "ADV-2008-0083", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2008/0083", }, { name: "21188", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21188", }, { name: "21134", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21134", }, { name: "21631", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21631", }, { name: "SSRT061181", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "SSRT061236", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "USN-296-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/296-2/", }, { name: "GLSA-200606-21", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200606-21.xml", }, { name: "DSA-1118", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2006/dsa-1118", }, { name: "HPSBUX02153", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "DSA-1120", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2006/dsa-1120", }, { name: "RHSA-2006:0611", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0611.html", }, { name: "HPSBUX02156", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "DSA-1134", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2006/dsa-1134", }, { name: "GLSA-200606-12", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200606-12.xml", }, { name: "21324", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21324", }, { name: "21183", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21183", }, { name: "22066", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/22066", }, { name: "21269", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/21269", }, { name: "SUSE-SA:2006:035", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://www.novell.com/linux/security/advisories/2006_35_mozilla.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.mozilla.org/security/announce/2006/mfsa2006-33.html", }, { name: "USN-297-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/297-1/", }, { name: "RHSA-2006:0578", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0578.html", }, { name: "ADV-2006-2106", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2006/2106", }, { name: "MDKSA-2006:143", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:143", }, { name: "22065", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/22065", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2006-06-01T00:00:00", descriptions: [ { lang: "en", value: "HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-10-18T14:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "20709", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/20709", }, { name: "21176", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21176", }, { name: "MDKSA-2006:145", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:145", }, { name: "ADV-2006-3748", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2006/3748", }, { name: "USN-296-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/296-1/", }, { name: "mozilla-http-response-smuggling(26844)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/26844", }, { name: "USN-323-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/323-1/", }, { name: "20561", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/20561", }, { name: "oval:org.mitre.oval:def:9966", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9966", }, { name: "RHSA-2006:0594", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0594.html", }, { name: "21336", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21336", }, { name: "20382", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/20382", }, { name: "1016214", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://securitytracker.com/id?1016214", }, { name: "20060602 rPSA-2006-0091-1 firefox thunderbird", tags: [ "mailing-list", "x_refsource_BUGTRAQ", ], url: "http://www.securityfocus.com/archive/1/435795/100/0/threaded", }, { name: "ADV-2006-3749", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2006/3749", }, { name: "RHSA-2006:0610", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0610.html", }, { name: "20376", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/20376", }, { name: "RHSA-2006:0609", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2006-0609.html", }, { name: "21178", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21178", }, { name: "1016202", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://securitytracker.com/id?1016202", }, { name: "18228", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/18228", }, { name: "21532", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21532", }, { name: "21270", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21270", }, { name: "ADV-2008-0083", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2008/0083", }, { name: "21188", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21188", }, { name: "21134", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21134", }, { name: "21631", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21631", }, { name: "SSRT061181", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "SSRT061236", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "USN-296-2", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/296-2/", }, { name: "GLSA-200606-21", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200606-21.xml", }, { name: "DSA-1118", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2006/dsa-1118", }, { name: "HPSBUX02153", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "DSA-1120", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2006/dsa-1120", }, { name: "RHSA-2006:0611", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0611.html", }, { name: "HPSBUX02156", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "DSA-1134", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2006/dsa-1134", }, { name: "GLSA-200606-12", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://www.gentoo.org/security/en/glsa/glsa-200606-12.xml", }, { name: "21324", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21324", }, { name: "21183", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21183", }, { name: "22066", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/22066", }, { name: "21269", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/21269", }, { name: "SUSE-SA:2006:035", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://www.novell.com/linux/security/advisories/2006_35_mozilla.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.mozilla.org/security/announce/2006/mfsa2006-33.html", }, { name: "USN-297-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/297-1/", }, { name: "RHSA-2006:0578", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2006-0578.html", }, { name: "ADV-2006-2106", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2006/2106", }, { name: "MDKSA-2006:143", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:143", }, { name: "22065", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/22065", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2006-2786", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "20709", refsource: "SECUNIA", url: "http://secunia.com/advisories/20709", }, { name: "21176", refsource: "SECUNIA", url: "http://secunia.com/advisories/21176", }, { name: "MDKSA-2006:145", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:145", }, { name: "ADV-2006-3748", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2006/3748", }, { name: "USN-296-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/296-1/", }, { name: "mozilla-http-response-smuggling(26844)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/26844", }, { name: "USN-323-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/323-1/", }, { name: "20561", refsource: "SECUNIA", url: "http://secunia.com/advisories/20561", }, { name: "oval:org.mitre.oval:def:9966", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9966", }, { name: "RHSA-2006:0594", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2006-0594.html", }, { name: "21336", refsource: "SECUNIA", url: "http://secunia.com/advisories/21336", }, { name: "20382", refsource: "SECUNIA", url: "http://secunia.com/advisories/20382", }, { name: "1016214", refsource: "SECTRACK", url: "http://securitytracker.com/id?1016214", }, { name: "20060602 rPSA-2006-0091-1 firefox thunderbird", refsource: "BUGTRAQ", url: "http://www.securityfocus.com/archive/1/435795/100/0/threaded", }, { name: "ADV-2006-3749", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2006/3749", }, { name: "RHSA-2006:0610", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2006-0610.html", }, { name: "20376", refsource: "SECUNIA", url: "http://secunia.com/advisories/20376", }, { name: "RHSA-2006:0609", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2006-0609.html", }, { name: "21178", refsource: "SECUNIA", url: "http://secunia.com/advisories/21178", }, { name: "1016202", refsource: "SECTRACK", url: "http://securitytracker.com/id?1016202", }, { name: "18228", refsource: "BID", url: "http://www.securityfocus.com/bid/18228", }, { name: "21532", refsource: "SECUNIA", url: "http://secunia.com/advisories/21532", }, { name: "21270", refsource: "SECUNIA", url: "http://secunia.com/advisories/21270", }, { name: "ADV-2008-0083", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2008/0083", }, { name: "21188", refsource: "SECUNIA", url: "http://secunia.com/advisories/21188", }, { name: "21134", refsource: "SECUNIA", url: "http://secunia.com/advisories/21134", }, { name: "21631", refsource: "SECUNIA", url: "http://secunia.com/advisories/21631", }, { name: "SSRT061181", refsource: "HP", url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "SSRT061236", refsource: "HP", url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "USN-296-2", refsource: "UBUNTU", url: "https://usn.ubuntu.com/296-2/", }, { name: "GLSA-200606-21", refsource: "GENTOO", url: "http://www.gentoo.org/security/en/glsa/glsa-200606-21.xml", }, { name: "DSA-1118", refsource: "DEBIAN", url: "http://www.debian.org/security/2006/dsa-1118", }, { name: "HPSBUX02153", refsource: "HP", url: "http://www.securityfocus.com/archive/1/446658/100/200/threaded", }, { name: "DSA-1120", refsource: "DEBIAN", url: "http://www.debian.org/security/2006/dsa-1120", }, { name: "RHSA-2006:0611", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2006-0611.html", }, { name: "HPSBUX02156", refsource: "HP", url: "http://www.securityfocus.com/archive/1/446657/100/200/threaded", }, { name: "DSA-1134", refsource: "DEBIAN", url: "http://www.debian.org/security/2006/dsa-1134", }, { name: "GLSA-200606-12", refsource: "GENTOO", url: "http://www.gentoo.org/security/en/glsa/glsa-200606-12.xml", }, { name: "21324", refsource: "SECUNIA", url: "http://secunia.com/advisories/21324", }, { name: "21183", refsource: "SECUNIA", url: "http://secunia.com/advisories/21183", }, { name: "22066", refsource: "SECUNIA", url: "http://secunia.com/advisories/22066", }, { name: "21269", refsource: "SECUNIA", url: "http://secunia.com/advisories/21269", }, { name: "SUSE-SA:2006:035", refsource: "SUSE", url: "http://www.novell.com/linux/security/advisories/2006_35_mozilla.html", }, { name: "http://www.mozilla.org/security/announce/2006/mfsa2006-33.html", refsource: "CONFIRM", url: "http://www.mozilla.org/security/announce/2006/mfsa2006-33.html", }, { name: "USN-297-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/297-1/", }, { name: "RHSA-2006:0578", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2006-0578.html", }, { name: "ADV-2006-2106", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2006/2106", }, { name: "MDKSA-2006:143", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDKSA-2006:143", }, { name: "22065", refsource: "SECUNIA", url: "http://secunia.com/advisories/22065", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2006-2786", datePublished: "2006-06-02T20:00:00", dateReserved: "2006-06-02T00:00:00", dateUpdated: "2024-08-07T18:06:26.045Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.