CVE-2006-4567

Priority
Description
Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it easy
for users to accept self-signed certificates for the auto-update mechanism,
which might allow remote user-assisted attackers to use DNS spoofing to
trick users into visiting a malicious site and accepting a malicious
certificate for the Mozilla update site, which can then be used to install
arbitrary code on the next update.
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-19 11:39:58 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)