Lucene search

K

RedhatCVE-2006-1724

HistoryApr 14, 2006 - 10:02 a.m.

CVE-2006-1724

2006-04-1410:02:00

redhat

web.nvd.nist.gov

55

cve-2006-1724

firefox

thunderbird

mozilla suite

seamonkey

denial of service

dhtml

remote attackers

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.09

Percentile

94.6%

Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.

Affected configurations

Nvd

Node

mozillafirefoxRange1.0–1.0.8

OR

mozillafirefoxRange1.5–1.5.0.2

OR

mozillamozilla_suiteRange<1.7.13

OR

mozillaseamonkeyRange<1.0.1

OR

mozillathunderbirdRange1.0–1.0.8

OR

mozillathunderbirdRange1.5–1.5.0.2

Node

debiandebian_linuxMatch3.1

VendorProductVersionCPE
mozillafirefox*cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
mozillamozilla_suite*cpe:2.3:a:mozilla:mozilla_suite:*:*:*:*:*:*:*:*
mozillaseamonkey*cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
mozillathunderbird*cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
debiandebian_linux3.1cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txt

secunia.com/advisories/19631

secunia.com/advisories/19649

secunia.com/advisories/19696

secunia.com/advisories/19714

secunia.com/advisories/19780

secunia.com/advisories/19863

secunia.com/advisories/19941

secunia.com/advisories/21033

secunia.com/advisories/21622

secunia.com/advisories/22065

secunia.com/advisories/22066

securitytracker.com/id?1015919

securitytracker.com/id?1015920

securitytracker.com/id?1015921

sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1

sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1

support.avaya.com/elmodocs2/security/ASA-2006-205.htm

www.debian.org/security/2006/dsa-1046

www.debian.org/security/2006/dsa-1051

www.kb.cert.org/vuls/id/350262

www.mozilla.org/security/announce/2006/mfsa2006-20.html

www.redhat.com/archives/fedora-announce-list/2006-April/msg00153.html

www.redhat.com/archives/fedora-announce-list/2006-April/msg00154.html

www.redhat.com/support/errata/RHSA-2006-0328.html

www.redhat.com/support/errata/RHSA-2006-0330.html

www.securityfocus.com/archive/1/434524/100/0/threaded

www.securityfocus.com/archive/1/436338/100/0/threaded

www.securityfocus.com/archive/1/446657/100/200/threaded

www.securityfocus.com/archive/1/446658/100/200/threaded

www.securityfocus.com/bid/17516

www.us-cert.gov/cas/techalerts/TA06-107A.html

www.vupen.com/english/advisories/2006/1356

www.vupen.com/english/advisories/2006/3748

www.vupen.com/english/advisories/2006/3749

www.vupen.com/english/advisories/2008/0083

bugzilla.mozilla.org/show_bug.cgi?id=282105

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10243

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1901

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.09

Percentile

94.6%

Related for CVE-2006-1724

cvelist2 debiancve1 ubuntucve1 nvd2 prion2 cve1 mozilla1 cert1 securityvulns1 nessus21 redhat3 centos4 openvas9 freebsd1 debian4 osv2