Unrated severityNVD Advisory· Published Sep 15, 2006· Updated Jun 16, 2026
CVE-2006-4570
CVE-2006-4570
Description
Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows remote user-assisted attackers to bypass settings that disable JavaScript via a remote XBL file in a message that is loaded when the user views, forwards, or replies to the original message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*range: <=1.0.4
- (no CPE)range: <1.0.5
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*range: <=1.5.0.6
- (no CPE)range: <1.5.0.7
Patches
Vulnerability mechanics
References
32- www.redhat.com/support/errata/RHSA-2006-0676.htmlnvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2006-0677.htmlnvdPatchVendor Advisory
- www.mozilla.org/security/announce/2006/mfsa2006-63.htmlnvdVendor Advisory
- patches.sgi.com/support/free/security/advisories/20060901-01-P.ascnvd
- secunia.com/advisories/21915nvd
- secunia.com/advisories/21916nvd
- secunia.com/advisories/21939nvd
- secunia.com/advisories/21940nvd
- secunia.com/advisories/22036nvd
- secunia.com/advisories/22055nvd
- secunia.com/advisories/22056nvd
- secunia.com/advisories/22074nvd
- secunia.com/advisories/22088nvd
- secunia.com/advisories/22247nvd
- secunia.com/advisories/22274nvd
- secunia.com/advisories/22299nvd
- secunia.com/advisories/22342nvd
- secunia.com/advisories/22391nvd
- security.gentoo.org/glsa/glsa-200610-01.xmlnvd
- security.gentoo.org/glsa/glsa-200610-04.xmlnvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- www.debian.org/security/2006/dsa-1192nvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2006_54_mozilla.htmlnvd
- www.securityfocus.com/bid/20042nvd
- www.ubuntu.com/usn/usn-350-1nvd
- www.ubuntu.com/usn/usn-352-1nvd
- www.ubuntu.com/usn/usn-361-1nvd
- www.us.debian.org/security/2006/dsa-1191nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28962nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10892nvd
News mentions
0No linked articles in our index yet.