CVE-2006-2786

Severity

26%

Complexity

49%

Confidentiality

48%

HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.

HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.

CVSS 2.0 Base Score 2.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:N/I:P/A:N).

Overview

Type

Mozilla

First reported 19 years ago

2006-06-02 20:02:00

Last updated 6 years ago

2018-10-18 16:42:00

Affected Software

Mozilla Firefox

Mozilla Thunderbird

References

RHSA-2006:0609

20376

20382

20561

20709

21134

21176

21178

21183

21188

21269

21270

21324

21336

21532

21631

22065

22066

1016202

1016214

DSA-1118

DSA-1120

DSA-1134

GLSA-200606-12

GLSA-200606-21

MDKSA-2006:143

MDKSA-2006:145

http://www.mozilla.org/security/announce/2006/mfsa2006-33.html

Vendor Advisory

SUSE-SA:2006:035

RHSA-2006:0578

RHSA-2006:0594

RHSA-2006:0610

RHSA-2006:0611

20060602 rPSA-2006-0091-1 firefox thunderbird

SSRT061236

SSRT061181

18228

ADV-2006-2106

ADV-2006-3748

ADV-2006-3749

ADV-2008-0083

mozilla-http-response-smuggling(26844)

oval:org.mitre.oval:def:9966

USN-296-1

USN-296-2

USN-297-1

USN-323-1

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.