mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-14 20:08:44 +00:00
836 B
836 B
CVE-2006-3808
Description
Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function to an eval method on a privileged object.
POC
Reference
- http://www.redhat.com/support/errata/RHSA-2006-0608.html
- http://www.securityfocus.com/archive/1/446658/100/200/threaded
- http://www.ubuntu.com/usn/usn-361-1
Github
No PoCs found on GitHub currently.