Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2006-6506

Published: 20/12/2006 Updated: 08/03/2011
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Firefox

Vulnerability Summary

The "Feed Preview" feature in Mozilla Firefox 2.0 prior to 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to determine browsing habits.

Vulnerable Product Search on Vulmon Subscribe to Product

mozilla firefox 2.0

Vendor Advisories

Ubuntu Security Notice: firefox vulnerabilities
Various flaws have been reported that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious web page containing JavaScript or SVG (CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, CVE-2006-6501, CVE-2006-6502, CVE-2006-6504) ...
Ubuntu Security Notice: mozilla-thunderbird vulnerabilities
Georgi Guninski and David Bienvenu discovered that long Content-Type and RFC2047-encoded headers we vulnerable to heap overflows By tricking the user into opening a specially crafted email, an attacker could execute arbitrary code with user privileges (CVE-2006-6506) ...
Mozilla: RSS Feed-preview referrer leak
Mozilla Foundation Security Advisory 2006-75 RSS Feed-preview referrer leak Announced December 19, 2006 Reporter Jared Breland Impact Low Products Firefox Fixed in Firefox 2001 ...

References

NVD-CWE-Otherhttp://www.legroom.net/modules.php?op=modload&name=News&file=article&sid=215http://www.mozilla.org/security/announce/2006/mfsa2006-75.htmlhttp://securitytracker.com/id?1017421http://www.us-cert.gov/cas/techalerts/TA06-354A.htmlhttp://www.securityfocus.com/bid/21668http://secunia.com/advisories/23282http://www.novell.com/linux/security/advisories/2006_80_mozilla.htmlhttp://www.ubuntu.com/usn/usn-398-1http://secunia.com/advisories/23589http://security.gentoo.org/glsa/glsa-200701-02.xmlhttp://secunia.com/advisories/23545http://secunia.com/advisories/23614http://www.novell.com/linux/security/advisories/2007_06_mozilla.htmlhttp://secunia.com/advisories/23672http://www.vupen.com/english/advisories/2008/0083http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742http://www.vupen.com/english/advisories/2006/5068https://usn.ubuntu.com/398-1/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injectionCVE-2024-35894SQLCVE-2024-5105CVE-2014-100005CVE-2024-35895unauthorizedCVE-2024-22120CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook