{
  "threat_severity" : "Critical",
  "public_date" : "2006-07-26T00:00:00Z",
  "bugzilla" : {
    "description" : "security flaw",
    "id" : "1618153",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1618153"
  },
  "details" : [ "Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 3",
    "release_date" : "2006-07-27T00:00:00Z",
    "advisory" : "RHSA-2006:0608",
    "cpe" : "cpe:/o:redhat:enterprise_linux:3",
    "package" : "seamonkey-0:1.0.3-0.el3.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-08-02T00:00:00Z",
    "advisory" : "RHSA-2006:0609",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "devhelp-0:0.10-0.2.el4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-08-02T00:00:00Z",
    "advisory" : "RHSA-2006:0609",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "seamonkey-0:1.0.3-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-07-28T00:00:00Z",
    "advisory" : "RHSA-2006:0610",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "firefox-0:1.5.0.5-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-07-29T00:00:00Z",
    "advisory" : "RHSA-2006:0611",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "thunderbird-0:1.5.0.5-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux AS (Advanced Server) version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux ES version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux WS version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Linux Advanced Workstation 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2006-3677\nhttps://nvd.nist.gov/vuln/detail/CVE-2006-3677" ],
  "name" : "CVE-2006-3677",
  "csaw" : false
}