漏洞信息(CVE-2006-1732)

一、漏洞 CVE-2006-1732 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

Mozilla Firefox和Thunderbird 1.x在1.5及之前版本、1.0.x在1.0.8及之前版本、Mozilla Suite在1.7.13及之前版本、SeaMonkey在1.0及之前版本中的未指定漏洞允许远程攻击者绕过同来源保护，并通过涉及窗口.controllers数组的未指定向量进行跨站脚本(XSS)攻击。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting (XSS) attacks via unspecified vectors involving the window.controllers array.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

Mozilla Suite/Firefox/SeaMonkey/Thunderbird多个远程安全漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

Mozilla Suite/Firefox/SeaMonkey/Thunderbird都是Mozilla发布的WEB浏览器和邮件新闻组客户端产品。上述产品中存在多个安全漏洞，具体如下： 1) 攻击者可能通过DHTML相关的攻击导致拒绝服务或执行任意代码。 2) Mozilla/Firefox和Thunderbird没有正确地处理CSS "letter-spacing"单元。攻击者可以通过指定很大的数值在内存分配期间溢出整数，导致堆溢出。成功利用这个漏洞的攻击者可以执行任意代码。 3) 远程攻击者可以向文

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

跨站脚本

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2006-1732 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2006-1732 的情报信息

http://www.mozilla.org/security/announce/2006/mfsa2006-17.html x_refsource_CONFIRM
https://bugzilla.mozilla.org/show_bug.cgi?id=313373 x_refsource_MISC
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm x_refsource_CONFIRM
http://secunia.com/advisories/19862 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21033 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19746 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19794 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19811 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19696 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19714 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19759 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19729 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19823 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20051 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21622 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19821 third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/17516 vdb-entry x_refsource_BID
http://secunia.com/advisories/19780 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19852 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19721 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19902 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19631 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19950 third-party-advisory x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1 vendor-advisory x_refsource_SUNALERT
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1 vendor-advisory x_refsource_SUNALERT
http://www.debian.org/security/2006/dsa-1044 vendor-advisory x_refsource_DEBIAN
https://usn.ubuntu.com/271-1/ vendor-advisory x_refsource_UBUNTU
https://usn.ubuntu.com/275-1/ vendor-advisory x_refsource_UBUNTU
https://usn.ubuntu.com/276-1/ vendor-advisory x_refsource_UBUNTU
http://www.securityfocus.com/archive/1/438730/100/0/threaded vendor-advisory x_refsource_HP
http://www.securityfocus.com/archive/1/436338/100/0/threaded vendor-advisory x_refsource_FEDORA
http://www.vupen.com/english/advisories/2006/1356 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/3391 vdb-entry x_refsource_VUPEN
ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc vendor-advisory x_refsource_SGI
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt vendor-advisory x_refsource_SCO
http://www.securityfocus.com/archive/1/436296/100/0/threaded vendor-advisory x_refsource_FEDORA
http://www.redhat.com/support/errata/RHSA-2006-0329.html vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2006:076 vendor-advisory x_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0330.html vendor-advisory x_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml vendor-advisory x_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2006-0328.html vendor-advisory x_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml vendor-advisory x_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2006:075 vendor-advisory x_refsource_MANDRIVA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:078 vendor-advisory x_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml vendor-advisory x_refsource_GENTOO
http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00154.html vendor-advisory x_refsource_FEDORA
http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00153.html vendor-advisory x_refsource_FEDORA
http://www.novell.com/linux/security/advisories/2006_04_25.html vendor-advisory x_refsource_SUSE
http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html vendor-advisory x_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1887 vdb-entry signature x_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10232 vdb-entry signature x_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/25818 vdb-entry x_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2006-1732

一、 漏洞 CVE-2006-1732 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2006-1732 的公开POC

三、漏洞 CVE-2006-1732 的情报信息

一、漏洞 CVE-2006-1732 基础信息