Rapid7 Vulnerability & Exploit Database

Mozilla Firefox JavaScript watch() Privilege Escalation

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

Mozilla Firefox JavaScript watch() Privilege Escalation

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

12/19/2006

Created

07/25/2018

Added

01/29/2007

Modified

02/13/2015

Description

Certain versions of Mozilla Firefox contain a JavaScript flaw when using the watch() function which may allow an attacker to gain elevated privileges on a target machine.

Solution(s)

mozilla-firefox-upgrade-1_5_0_9
mozilla-firefox-upgrade-latest

References

https://attackerkb.com/topics/cve-2006-6097
APPLE-SA-2007-03-13
21235
21668
TA06-354A
TA07-072A
263412
405092
427972
428500
447772
606260
722244
887332
928956
CVE - 2006-6097
CVE - 2006-6497
CVE - 2006-6498
CVE - 2006-6499
CVE - 2006-6500
CVE - 2006-6501
CVE - 2006-6502
CVE - 2006-6503
CVE - 2006-6504
CVE - 2006-6505
CVE - 2006-6506
CVE - 2006-6507
DSA-1223
DSA-1253
DSA-1258
DSA-1265
OVAL10661
OVAL10895
OVAL10963
OVAL11077
OVAL11565
OVAL11691
OVAL9626
OVAL9746
RHSA-2006:0749
RHSA-2006:0758
RHSA-2006:0759
RHSA-2006:0760
20061202-01-P
SUSE-SA:2006:080
SUSE-SA:2007:006
http://docs.info.apple.com/article.html?artnum=305214
http://fedoranews.org/cms/node/2297
http://fedoranews.org/cms/node/2338
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:219
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:010
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:011
http://kb.vmware.com/KanisaPlatform/Publishing/817/2240267_f.SAL_Public.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050812.html
http://security.freebsd.org/advisories/FreeBSD-SA-06:26.gtar.asc
http://support.avaya.com/elmodocs2/security/ASA-2007-015.htm
http://www.frsirt.com/english/advisories/2006/4717
http://www.frsirt.com/english/advisories/2006/5068
http://www.frsirt.com/english/advisories/2006/5102
http://www.frsirt.com/english/advisories/2007/0573
http://www.frsirt.com/english/advisories/2007/0930
http://www.frsirt.com/english/advisories/2007/1171
http://www.legroom.net/modules.php?op=modload&name=News&file=article&sid=215
http://www.mozilla.org/security/announce/2006/mfsa2006-68.html
http://www.mozilla.org/security/announce/2006/mfsa2006-69.html
http://www.mozilla.org/security/announce/2006/mfsa2006-70.html
http://www.mozilla.org/security/announce/2006/mfsa2006-71.html
http://www.mozilla.org/security/announce/2006/mfsa2006-72.html
http://www.mozilla.org/security/announce/2006/mfsa2006-73.html
http://www.mozilla.org/security/announce/2006/mfsa2006-74.html
http://www.mozilla.org/security/announce/2006/mfsa2006-75.html
http://www.mozilla.org/security/announce/2006/mfsa2006-76.html
http://www.securityfocus.com/archive/1/archive/1/453286/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/454939/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/455145/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/455728/100/200/threaded
http://www.securityfocus.com/archive/1/archive/1/464268/100/0/threaded
http://www.trustix.org/errata/2006/0068/
http://www.ubuntu.com/usn/usn-385-1
http://www.ubuntu.com/usn/usn-398-1
http://www.ubuntu.com/usn/usn-398-2
http://www.ubuntu.com/usn/usn-400-1
http://www.vmware.com/support/esx25/doc/esx-254-200702-patch.html
http://www.zerodayinitiative.com/advisories/ZDI-06-051.html
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=216937
https://issues.rpath.com/browse/RPL-821
https://issues.rpath.com/browse/RPL-883

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Mozilla Firefox JavaScript watch() Privilege Escalation

Mozilla Firefox JavaScript watch() Privilege Escalation

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Success! Thank you for submission. We will be in touch shortly.

Submit your information and we will get in touch with you.