Mozilla · Firefox · CVE-2006-2775
**Name of the Vulnerable Software and Affected Versions**
Mozilla Firefox versions prior to 1.5.0.4
Mozilla Thunderbird versions prior to 1.5.0.4
**Description**
The issue allows remote attackers to bypass restrictions under certain circumstances by causing a persisted string to be associated with the wrong URL. This occurs due to the incorrect association of XUL attributes with URLs.
**Recommendations**
For Mozilla Firefox versions prior to 1.5.0.4, update to version 1.5.0.4 or later to resolve the issue.
For Mozilla Thunderbird versions prior to 1.5.0.4, update to version 1.5.0.4 or later to resolve the issue.