CVE-2006-0296
First published: Thu Feb 02 2006(Updated: )
The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attribute name, which allows remote attackers to execute arbitrary Javascript by injecting RDF data into the user's localstore.rdf file.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Firefox | =0.8 | |
| Firefox | =0.9 | |
| Firefox | =0.9-rc | |
| Firefox | =0.9.1 | |
| Firefox | =0.9.2 | |
| Firefox | =0.9.3 | |
| Firefox | =0.10 | |
| Firefox | =0.10.1 | |
| Firefox | =1.0 | |
| Firefox | =1.0.1 | |
| Firefox | =1.0.2 | |
| Firefox | =1.0.3 | |
| Firefox | =1.0.4 | |
| Firefox | =1.0.5 | |
| Firefox | =1.0.6 | |
| Firefox | =1.0.6 | |
| Firefox | =1.0.7 | |
| Firefox | =1.5 | |
| Firefox | =1.5-beta1 | |
| Mozilla SeaMonkey | =1.0 | |
| Mozilla SeaMonkey | =1.0-beta |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.mozilla.org/show_bug.cgi?id=319847
- http://www.redhat.com/support/errata/RHSA-2006-0199.html
- http://www.redhat.com/support/errata/RHSA-2006-0200.html
- http://www.securityfocus.com/bid/16476
- http://secunia.com/advisories/18700
- http://secunia.com/advisories/18703
- http://secunia.com/advisories/18704
- http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00005.html
- http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00006.html
- http://www.kb.cert.org/vuls/id/592425
- http://securitytracker.com/id?1015570
- http://secunia.com/advisories/18708
- http://secunia.com/advisories/18709
- http://secunia.com/advisories/18705
- http://secunia.com/advisories/18706
- http://secunia.com/advisories/19230
- http://www.debian.org/security/2006/dsa-1044
- http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml
- http://secunia.com/advisories/19759
- http://secunia.com/advisories/19821
- http://www.debian.org/security/2006/dsa-1046
- http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml
- http://secunia.com/advisories/19823
- http://secunia.com/advisories/19852
- http://secunia.com/advisories/19862
- http://secunia.com/advisories/19863
- http://secunia.com/advisories/19902
- http://www.debian.org/security/2006/dsa-1051
- http://secunia.com/advisories/19950
- http://secunia.com/advisories/19941
- http://secunia.com/advisories/19746
- http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml
- http://www.redhat.com/support/errata/RHSA-2006-0330.html
- http://secunia.com/advisories/21033
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1
- http://secunia.com/advisories/21622
- http://www.mozilla.org/security/announce/2006/mfsa2006-05.html
- http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm
- http://secunia.com/advisories/19780
- http://secunia.com/advisories/20051
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:036
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:078
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:037
- http://www.us-cert.gov/cas/techalerts/TA06-038A.html
- http://secunia.com/advisories/22065
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1
- http://www.vupen.com/english/advisories/2006/3749
- http://www.vupen.com/english/advisories/2006/3391
- http://www.novell.com/linux/security/advisories/2006_04_25.html
- http://www.vupen.com/english/advisories/2006/0413
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24434
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1493
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11803
- https://usn.ubuntu.com/276-1/
- https://usn.ubuntu.com/275-1/
- https://usn.ubuntu.com/271-1/
- http://www.securityfocus.com/archive/1/446657/100/200/threaded
- http://www.securityfocus.com/archive/1/438730/100/0/threaded
- http://www.securityfocus.com/archive/1/425978/100/0/threaded
- http://www.securityfocus.com/archive/1/425975/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2006-0296?
CVE-2006-0296 is considered to be a moderate severity vulnerability that allows remote attackers to execute arbitrary JavaScript.
How do I fix CVE-2006-0296?
To remediate CVE-2006-0296, users should upgrade to Firefox version 1.5.0.1 or later and SeaMonkey version 1.0 or later.
What software is affected by CVE-2006-0296?
CVE-2006-0296 affects multiple versions of Mozilla Firefox prior to 1.5.0.1 and SeaMonkey prior to 1.0.
What does CVE-2006-0296 exploit?
CVE-2006-0296 exploits the XULDocument.persist function due to improper validation of attribute names, allowing RDF data injection.
Can CVE-2006-0296 lead to malware installation?
Yes, CVE-2006-0296 can lead to the execution of arbitrary JavaScript, which may result in malware installation on a vulnerable system.
- agent/references
- agent/type
- agent/author
- agent/severity
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/softwarecombine
- vendor/mozilla
- canonical/firefox
- version/firefox/0.8
- version/firefox/0.9
- version/firefox/0.9-rc
- version/firefox/0.9.1
- version/firefox/0.9.2
- version/firefox/0.9.3
- version/firefox/0.10
- version/firefox/0.10.1
- version/firefox/1.0
- version/firefox/1.0.1
- version/firefox/1.0.2
- version/firefox/1.0.3
- version/firefox/1.0.4
- version/firefox/1.0.5
- version/firefox/1.0.6
- version/firefox/1.0.7
- version/firefox/1.5
- version/firefox/1.5-beta1
- canonical/mozilla seamonkey
- version/mozilla seamonkey/1.0
- version/mozilla seamonkey/1.0-beta