CVE-2006-6077

Impact:
Moderate
Public Date:
2007-02-23

The MITRE CVE dictionary describes this issue as:

The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier; and the (2) Passcard Manager in Netscape 8.1.2 and possibly other versions, do not properly verify that an ACTION URL in a FORM element containing a password INPUT element matches the web site for which the user stored a password, which allows remote attackers to obtain passwords via a password INPUT element on a different web page located on the web site intended for this password.

Find out more about CVE-2006-6077 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) RHSA-2007:0108 2007-03-14
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2007:0078 2007-03-02
Red Hat Enterprise Linux 4 (firefox) RHSA-2007:0079 2007-02-23
Red Hat Enterprise Linux 4 RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2007:0077 2007-02-24
Red Hat Enterprise Linux 5 RHSA-2007:0108 2007-03-14
Red Hat Enterprise Linux 5 RHSA-2007:0097 2007-03-14

Mitigation

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.