DEBIAN-CVE-2006-2776

DEBIAN-CVE-2006-2776 PUBLISHED

Certain privileged UI code in Mozilla Firefox and Thunderbird before 1.5.0.4 calls content-defined setters on an object prototype, which allows remote attackers to execute code at a higher privilege than intended.

Affected Products

Vendor	Product	Versions
Debian:11	thunderbird	0, 0, 0
Debian:12	thunderbird	0, 0, 0
Debian:13	thunderbird	0, 0, 0
Debian:14	thunderbird	0, 0, 0

Timeline

Jun 2, 2006 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2006-2776 advisory

Open in Interactive Console →