{
  "threat_severity" : "Important",
  "public_date" : "2006-07-26T00:00:00Z",
  "bugzilla" : {
    "description" : "security flaw",
    "id" : "1618170",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1618170"
  },
  "details" : [ "Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the XPCNativeWrapper(window).Function construct." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Enterprise Linux 3",
    "release_date" : "2006-07-27T00:00:00Z",
    "advisory" : "RHSA-2006:0608",
    "cpe" : "cpe:/o:redhat:enterprise_linux:3",
    "package" : "seamonkey-0:1.0.3-0.el3.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-08-02T00:00:00Z",
    "advisory" : "RHSA-2006:0609",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "devhelp-0:0.10-0.2.el4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-08-02T00:00:00Z",
    "advisory" : "RHSA-2006:0609",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "seamonkey-0:1.0.3-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-07-28T00:00:00Z",
    "advisory" : "RHSA-2006:0610",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "firefox-0:1.5.0.5-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux 4",
    "release_date" : "2006-07-29T00:00:00Z",
    "advisory" : "RHSA-2006:0611",
    "cpe" : "cpe:/o:redhat:enterprise_linux:4",
    "package" : "thunderbird-0:1.5.0.5-0.el4.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux AS (Advanced Server) version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux ES version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Enterprise Linux WS version 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  }, {
    "product_name" : "Red Hat Linux Advanced Workstation 2.1",
    "release_date" : "2006-08-28T00:00:00Z",
    "advisory" : "RHSA-2006:0594",
    "cpe" : "cpe:/o:redhat:enterprise_linux:2.1"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2006-3810\nhttps://nvd.nist.gov/vuln/detail/CVE-2006-3810" ],
  "name" : "CVE-2006-3810",
  "csaw" : false
}