CVE-2006-3812

Published: 29 July 2006

Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copying or dragging links.

Priority

Status

Package	Release	Status
firefox Launchpad, Ubuntu, Debian	dapper	Released (1.5.dfsg+1.5.0.13~prepatch070731-0ubuntu1)
	edgy	Not vulnerable
	feisty	Not vulnerable
	upstream	Needs triage
firefox-granparadiso Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Does not exist
	feisty	Does not exist
	upstream	Needs triage
lightning-sunbird Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Does not exist
	feisty	Does not exist
	upstream	Needs triage
midbrowser Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Does not exist
	feisty	Does not exist
	upstream	Needs triage
mozilla-thunderbird Launchpad, Ubuntu, Debian	dapper	Released (1.5.0.13-0ubuntu0.6.06)
	edgy	Released (1.5.0.13-0ubuntu0.6.10)
	feisty	Released (1.5.0.13-0ubuntu0.7.04)
	upstream	Needs triage
xulrunner Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Released (1.8.0.5-4.2)
	feisty	Released (1.8.0.5-4.2)
	upstream	Needs triage

References

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2006-3812

Unknown

Status

References

Join the discussion

Canonical is offering Extended Security Maintenance

Further reading