漏洞信息(CVE-2006-2777)

一、漏洞 CVE-2006-2777 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

Mozilla Firefox 1.5.0.4 和 SeaMonkey 1.0.2 之前的未指定漏洞允许远程攻击者通过使用Selection对象的nsISelectionPrivate接口添加SelectionListener并创建在特权上下文中执行的警报来执行任意代码。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to execute arbitrary code by using the nsISelectionPrivate interface of the Selection object to add a SelectionListener and create notifications that are executed in a privileged context.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

Mozilla Firefox 多个未明漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

Mozilla Firefox/SeaMonkey/Thunderbird是Mozilla发布的WEB浏览器和邮件新闻组客户端产品。 Web内容可以访问Selection对象的nsISelectionPrivate接口并用于添加SelectionListener。当用户在页面上执行"查找"或"全选"操作时会调用监听程序。如果结合其他漏洞的话攻击者就可以在特权环境中执行任意代码。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

授权问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2006-2777 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2006-2777 的情报信息

http://www.mozilla.org/security/announce/2006/mfsa2006-43.html x_refsource_CONFIRM
http://secunia.com/advisories/21176 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21183 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21324 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20394 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21188 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21532 third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/18228 vdb-entry x_refsource_BID
http://secunia.com/advisories/21178 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20376 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20561 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/22066 third-party-advisory x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102763-1 vendor-advisory x_refsource_SUNALERT
http://securitytracker.com/id?1016202 vdb-entry x_refsource_SECTRACK
http://www.debian.org/security/2006/dsa-1134 vendor-advisory x_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-1120 vendor-advisory x_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-1118 vendor-advisory x_refsource_DEBIAN
https://usn.ubuntu.com/296-2/ vendor-advisory x_refsource_UBUNTU
https://usn.ubuntu.com/296-1/ vendor-advisory x_refsource_UBUNTU
https://usn.ubuntu.com/323-1/ vendor-advisory x_refsource_UBUNTU
http://www.kb.cert.org/vuls/id/237257 third-party-advisory x_refsource_CERT-VN
http://www.us-cert.gov/cas/techalerts/TA06-153A.html third-party-advisory x_refsource_CERT
http://www.securityfocus.com/archive/1/446658/100/200/threaded vendor-advisory x_refsource_HP
http://www.vupen.com/english/advisories/2008/0083 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/2106 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/3748 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/0058 vdb-entry x_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDKSA-2006:143 vendor-advisory x_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200606-12.xml vendor-advisory x_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2006:145 vendor-advisory x_refsource_MANDRIVA
http://www.novell.com/linux/security/advisories/2006_35_mozilla.html vendor-advisory x_refsource_SUSE
http://www.securityfocus.com/archive/1/435795/100/0/threaded mailing-list x_refsource_BUGTRAQ
https://exchange.xforce.ibmcloud.com/vulnerabilities/26853 vdb-entry x_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2006-2777

一、 漏洞 CVE-2006-2777 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2006-2777 的公开POC

三、漏洞 CVE-2006-2777 的情报信息

一、漏洞 CVE-2006-2777 基础信息