Vulnerability Description
Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | 1.5 |
| Mozilla | Seamonkey | 1.0 |
| Mozilla | Thunderbird | 1.5 |
References
- ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc
- http://rhn.redhat.com/errata/RHSA-2006-0609.html
- http://secunia.com/advisories/19873PatchVendor Advisory
- http://secunia.com/advisories/21216PatchVendor Advisory
- http://secunia.com/advisories/21229PatchVendor Advisory
- http://secunia.com/advisories/21243
- http://secunia.com/advisories/21246
- http://secunia.com/advisories/21262
- http://secunia.com/advisories/21270
- http://secunia.com/advisories/21275
- http://secunia.com/advisories/21336
- http://secunia.com/advisories/21343
- http://secunia.com/advisories/21361
- http://secunia.com/advisories/21529
- http://secunia.com/advisories/21532
FAQ
What is CVE-2006-3812?
CVE-2006-3812 is a vulnerability with a CVSS score of 2.6 (LOW). Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copyin...
How severe is CVE-2006-3812?
CVE-2006-3812 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3812?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Seamonkey, Mozilla Thunderbird.