ByteOS Network

CVE Vulnerability Details :

CVE-2006-1736

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-14 Apr, 2006 | 10:00

Updated At-07 Aug, 2024 | 17:19

▼CVE Numbering Authority (CNA)

Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to trick users into downloading and saving an executable file via an image that is overlaid by a transparent image link that points to the executable, which causes the executable to be saved when the user clicks the "Save image as..." option. NOTE: this attack is made easier due to a GUI truncation issue that prevents the user from seeing the malicious extension when there is extra whitespace in the filename.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://usn.ubuntu.com/275-1/	vendor-advisory x_refsource_UBUNTU
http://secunia.com/advisories/19902	third-party-advisory x_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/25814	vdb-entry x_refsource_XF
http://www.securityfocus.com/archive/1/438730/100/0/threaded	vendor-advisory x_refsource_HP
http://secunia.com/advisories/19941	third-party-advisory x_refsource_SECUNIA
http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml	vendor-advisory x_refsource_GENTOO
http://secunia.com/advisories/21622	third-party-advisory x_refsource_SECUNIA
http://www.mozilla.org/security/announce/2006/mfsa2006-13.html	x_refsource_CONFIRM
http://secunia.com/advisories/19862	third-party-advisory x_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:075	vendor-advisory x_refsource_MANDRIVA
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm	x_refsource_CONFIRM
http://www.debian.org/security/2006/dsa-1051	vendor-advisory x_refsource_DEBIAN
https://usn.ubuntu.com/271-1/	vendor-advisory x_refsource_UBUNTU
http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml	vendor-advisory x_refsource_GENTOO
http://secunia.com/advisories/19794	third-party-advisory x_refsource_SECUNIA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1548	vdb-entry signature x_refsource_OVAL
http://secunia.com/advisories/19746	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21033	third-party-advisory x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1	vendor-advisory x_refsource_SUNALERT
http://secunia.com/advisories/19759	third-party-advisory x_refsource_SECUNIA
http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html	vendor-advisory x_refsource_SUSE
http://www.vupen.com/english/advisories/2006/1356	vdb-entry x_refsource_VUPEN
http://www.securityfocus.com/archive/1/438730/100/0/threaded	vendor-advisory x_refsource_HP
http://secunia.com/advisories/19863	third-party-advisory x_refsource_SECUNIA
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt	vendor-advisory x_refsource_SCO
http://www.securityfocus.com/bid/17516	vdb-entry x_refsource_BID
http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1	vendor-advisory x_refsource_SUNALERT
http://secunia.com/advisories/19852	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19721	third-party-advisory x_refsource_SECUNIA
https://bugzilla.mozilla.org/show_bug.cgi?id=293527	x_refsource_MISC
http://secunia.com/advisories/19631	third-party-advisory x_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=MDKSA-2006:076	vendor-advisory x_refsource_MANDRIVA
http://www.debian.org/security/2006/dsa-1046	vendor-advisory x_refsource_DEBIAN
http://www.debian.org/security/2006/dsa-1044	vendor-advisory x_refsource_DEBIAN

Hyperlink: https://usn.ubuntu.com/275-1/

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://secunia.com/advisories/19902

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/25814

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://www.securityfocus.com/archive/1/438730/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/19941

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://secunia.com/advisories/21622

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.mozilla.org/security/announce/2006/mfsa2006-13.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/19862

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2006:075

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.debian.org/security/2006/dsa-1051

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: https://usn.ubuntu.com/271-1/

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://secunia.com/advisories/19794

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1548

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://secunia.com/advisories/19746

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/21033

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1

Resource:

vendor-advisory

x_refsource_SUNALERT

Hyperlink: http://secunia.com/advisories/19759

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.vupen.com/english/advisories/2006/1356

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://www.securityfocus.com/archive/1/438730/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/19863

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt

Resource:

vendor-advisory

x_refsource_SCO

Hyperlink: http://www.securityfocus.com/bid/17516

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1

Resource:

vendor-advisory

x_refsource_SUNALERT

Hyperlink: http://secunia.com/advisories/19852

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/19721

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://bugzilla.mozilla.org/show_bug.cgi?id=293527

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/19631

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2006:076

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.debian.org/security/2006/dsa-1046

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.debian.org/security/2006/dsa-1044

Resource:

vendor-advisory

x_refsource_DEBIAN

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://usn.ubuntu.com/275-1/	vendor-advisory x_refsource_UBUNTU x_transferred
http://secunia.com/advisories/19902	third-party-advisory x_refsource_SECUNIA x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/25814	vdb-entry x_refsource_XF x_transferred
http://www.securityfocus.com/archive/1/438730/100/0/threaded	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/19941	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://secunia.com/advisories/21622	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.mozilla.org/security/announce/2006/mfsa2006-13.html	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/19862	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2006:075	vendor-advisory x_refsource_MANDRIVA x_transferred
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm	x_refsource_CONFIRM x_transferred
http://www.debian.org/security/2006/dsa-1051	vendor-advisory x_refsource_DEBIAN x_transferred
https://usn.ubuntu.com/271-1/	vendor-advisory x_refsource_UBUNTU x_transferred
http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://secunia.com/advisories/19794	third-party-advisory x_refsource_SECUNIA x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1548	vdb-entry signature x_refsource_OVAL x_transferred
http://secunia.com/advisories/19746	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/21033	third-party-advisory x_refsource_SECUNIA x_transferred
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1	vendor-advisory x_refsource_SUNALERT x_transferred
http://secunia.com/advisories/19759	third-party-advisory x_refsource_SECUNIA x_transferred
http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.vupen.com/english/advisories/2006/1356	vdb-entry x_refsource_VUPEN x_transferred
http://www.securityfocus.com/archive/1/438730/100/0/threaded	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/19863	third-party-advisory x_refsource_SECUNIA x_transferred
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt	vendor-advisory x_refsource_SCO x_transferred
http://www.securityfocus.com/bid/17516	vdb-entry x_refsource_BID x_transferred
http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1	vendor-advisory x_refsource_SUNALERT x_transferred
http://secunia.com/advisories/19852	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/19721	third-party-advisory x_refsource_SECUNIA x_transferred
https://bugzilla.mozilla.org/show_bug.cgi?id=293527	x_refsource_MISC x_transferred
http://secunia.com/advisories/19631	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2006:076	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.debian.org/security/2006/dsa-1046	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.debian.org/security/2006/dsa-1044	vendor-advisory x_refsource_DEBIAN x_transferred

Hyperlink: https://usn.ubuntu.com/275-1/

Resource:

vendor-advisory

x_refsource_UBUNTU

x_transferred

Hyperlink: http://secunia.com/advisories/19902

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/25814

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/438730/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/19941

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://secunia.com/advisories/21622

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.mozilla.org/security/announce/2006/mfsa2006-13.html

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://secunia.com/advisories/19862

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2006:075

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.debian.org/security/2006/dsa-1051

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: https://usn.ubuntu.com/271-1/

Resource:

vendor-advisory

x_refsource_UBUNTU

x_transferred

Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://secunia.com/advisories/19794

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1548

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://secunia.com/advisories/19746

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/21033

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1

Resource:

vendor-advisory

x_refsource_SUNALERT

x_transferred

Hyperlink: http://secunia.com/advisories/19759

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2006/1356

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/438730/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/19863

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt

Resource:

vendor-advisory

x_refsource_SCO

x_transferred

Hyperlink: http://www.securityfocus.com/bid/17516

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1

Resource:

vendor-advisory

x_refsource_SUNALERT

x_transferred

Hyperlink: http://secunia.com/advisories/19852

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/19721

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://bugzilla.mozilla.org/show_bug.cgi?id=293527

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://secunia.com/advisories/19631

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2006:076

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://www.debian.org/security/2006/dsa-1046

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://www.debian.org/security/2006/dsa-1044

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References