First published: Fri Apr 14 2006(Updated: )
Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via unknown vectors related to the crypto.generateCRMFRequest method.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Firefox | >=1.0<1.0.8 | |
Firefox | >=1.5<1.5.0.2 | |
Mozilla Suite | <1.7.13 | |
Mozilla SeaMonkey | <1.0.1 | |
Thunderbird | >=1.0<1.0.8 | |
Thunderbird | >=1.5<1.5.0.2 | |
Ubuntu | =4.10 | |
Ubuntu | =5.04 | |
Ubuntu | =5.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2006-1728 has been classified with a critical severity level due to the potential for remote code execution.
You can fix CVE-2006-1728 by upgrading to the latest versions of Mozilla Firefox, Thunderbird, Mozilla Suite, or SeaMonkey that are not affected.
CVE-2006-1728 affects Mozilla Firefox versions before 1.5.0.2, Thunderbird versions before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1.
CVE-2006-1728 can allow remote attackers to execute arbitrary code on affected systems, potentially leading to unauthorized access or data compromise.
Yes, CVE-2006-1728 is considered widespread due to its impact on widely used Mozilla applications.