CVE Database

CVE-2006-3807

Impact: Critical
Public: 2006-07-26

Details

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and calling "named JavaScript functions" that use the constructor.

Find out more about CVE-2006-3807 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (seamonkey) RHSA-2006:0594 August 28, 2006
Red Hat Enterprise Linux version 3 (seamonkey) RHSA-2006:0608 July 27, 2006
Red Hat Enterprise Linux version 4 RHSA-2006:0609 August 02, 2006
Red Hat Enterprise Linux version 4 (firefox) RHSA-2006:0610 July 28, 2006
Red Hat Enterprise Linux version 4 (thunderbird) RHSA-2006:0611 July 29, 2006

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.