Vulnerability in Mozilla Firefox

CVE-2006-0496

Cross-site scripting (XSS) vulnerability in Mozilla 1.7.12 and possibly earlier, Mozilla Firefox 1.0.7 and possibly earlier, and Netscape 8.1 and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the -moz…

EPSS: 0.026 (83.4th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox — versions 1.0, 1.0.1, 1.0.2
Mozilla — versions 1.7, 1.7.1, 1.7.2
N/a — versions n/a

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (vdb-entry, x_refsource_VUPEN)
cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (mailing-list, x_refsource_FULLDISC)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)