Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3113

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3113
Last Modified 07 Mar 2011 09:37:51
Published 27 Jul 2006 04:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3113

Summary

Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via simultaneous XPCOM events, which causes a timer object to be deleted in a way that triggers memory corruption.

Vulnerable Systems

Application

  • Mozilla Firefox 1.5

  • Mozilla Firefox 1.5.0.1

  • Mozilla Firefox 1.5.0.2

  • Mozilla Firefox 1.5.0.3

  • Mozilla Firefox 1.5.0.4

  • Mozilla Seamonkey 1.0

  • Mozilla Seamonkey 1.0.1

  • Mozilla Seamonkey 1.0.2

  • Mozilla Thunderbird 1.5

  • Mozilla Thunderbird 1.5.0.2

  • Mozilla Thunderbird 1.5.0.4


References

CERT - TA06-208A

CERT-VN - VU#239124

BID - 19197

BID - 19181

SECUNIA - 21229

SECUNIA - 21228

SECUNIA - 21216

SECUNIA - 19873

CONFIRM - https://issues.rpath.com/browse/RPL-537

CONFIRM - https://issues.rpath.com/browse/RPL-536

XF - mozilla-xpcom-memory-corruption(27982)

VUPEN - ADV-2008-0083

VUPEN - ADV-2006-3749

VUPEN - ADV-2006-3748

VUPEN - ADV-2006-2998

UBUNTU - USN-329-1

UBUNTU - USN-327-1

HP - SSRT061181

HP - HPSBUX02156

BUGTRAQ - 20060727 rPSA-2006-0137-1 firefox

BUGTRAQ - 20060727 Secunia Research: Mozilla Firefox XPCOM Event Handling MemoryCorruption

REDHAT - RHSA-2006:0611

REDHAT - RHSA-2006:0610

REDHAT - RHSA-2006:0608

SUSE - SUSE-SA:2006:048

CONFIRM - http://www.mozilla.org/security/announce/2006/mfsa2006-46.html

GENTOO - GLSA-200608-03

SECTRACK - 1016588

SECTRACK - 1016587

SECTRACK - 1016586

GENTOO - GLSA-200608-04

GENTOO - GLSA-200608-02

MISC - http://secunia.com/secunia_research/2006-53/advisory/

SECUNIA - 21607

SECUNIA - 21532

SECUNIA - 21529

SECUNIA - 21361

SECUNIA - 21358

SECUNIA - 21343

SECUNIA - 21336

SECUNIA - 21275

SECUNIA - 21270

SECUNIA - 21269

SECUNIA - 21262

SECUNIA - 21250

SECUNIA - 21246

SECUNIA - 21243

REDHAT - RHSA-2006:0609

SGI - 20060703-01-P

UBUNTU - USN-354-1

UBUNTU - USN-350-1

HP - SSRT061236

REDHAT - RHSA-2006:0594

MANDRIVA - MDKSA-2006:146

MANDRIVA - MDKSA-2006:145

MANDRIVA - MDKSA-2006:143

SECUNIA - 22210

SECUNIA - 22066

SECUNIA - 22065

SECUNIA - 22055

SECUNIA - 21631

HP - HPSBUX02153


Last Updated: 27 May 2016 10:44:52