Remote Code Execution Vulnerability in Mozilla Products
CVE-2006-1734

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox; Mozilla Suite; Thunderbird; Seamonkey
Vendor: CVE Published:; 14 April 2006

Summary

A vulnerability in Mozilla Firefox, Thunderbird, and SeaMonkey allows remote attackers to execute arbitrary code through the use of the Object.watch method, which can access the 'clone parent' internal function. This flaw affects various versions of these products, posing significant security risks to users. It is crucial for organizations and individuals to update to the latest versions or apply patches to mitigate the risk of exploitation.

References

https://usn.ubuntu.com/275-1/

vendor-advisoryx_refsource_UBUNTU

http://www.redhat.com/support/errata/RHSA-2006-0330.html

vendor-advisoryx_refsource_REDHAT

http://www.securityfocus.com/archive/1/434524/100/0/threaded

vendor-advisoryx_refsource_HP

EPSS Score

32% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 14, 2006
Vulnerability Reserved
Apr 12, 2006