CVE-2006-1735
EPSS 39.0%發布日:2006/4/14修改日:2026/4/28
描述
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding (XBL.method.eval) to create Javascript functions that are compiled with extra privileges.
受影響套件(1)
- Debian/thunderbirdfrom 0, < 1.5.0.2-1