Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2006-3809

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.

  • Published: Jul 27, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3809
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
mozilla / seamonkey 1.0.1 1.0.1.x
mozilla / firefox 1.5.0.3 1.5.0.3.x
mozilla / seamonkey 1.0 1.0.x
mozilla / firefox 1.5 1.5.x
mozilla / seamonkey 1.0.2 1.0.2.x
mozilla / thunderbird 1.5 1.5.x
mozilla / thunderbird 1.5.0.2 1.5.0.2.x
mozilla / firefox 1.5.0.2 1.5.0.2.x
mozilla / firefox 1.5.0.4 1.5.0.4.x
mozilla / firefox 1.5.0.1 1.5.0.1.x
mozilla / thunderbird 1.5.0.4 1.5.0.4.x