Lucene search

RedhatCVE-2006-5748

HistoryNov 08, 2006 - 9:07 p.m.

CVE-2006-5748

2006-11-0821:07:00

redhat

web.nvd.nist.gov

cve-2006-5748

mozilla firefox

thunderbird

seamonkey

remote attack

denial of service

memory corruption

arbitrary code execution

vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.5

Confidence

Low

EPSS

0.08

Percentile

94.3%

JSON

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger memory corruption.

Affected configurations

Nvd

Node

mozillafirefoxMatch1.5

mozillafirefoxMatch1.5beta1

mozillafirefoxMatch1.5beta2

mozillafirefoxMatch1.5.0.1

mozillafirefoxMatch1.5.0.2

mozillafirefoxMatch1.5.0.3

mozillafirefoxMatch1.5.0.4

mozillafirefoxMatch1.5.0.5

mozillafirefoxMatch1.5.0.6

mozillafirefoxMatch1.5.0.7

mozillaseamonkeyMatch1.0

mozillaseamonkeyMatch1.0dev

mozillaseamonkeyMatch1.0.1

mozillaseamonkeyMatch1.0.2

mozillaseamonkeyMatch1.0.3

mozillaseamonkeyMatch1.0.5

mozillathunderbirdMatch1.0

mozillathunderbirdMatch1.0.1

mozillathunderbirdMatch1.0.2

mozillathunderbirdMatch1.0.5

mozillathunderbirdMatch1.0.6

mozillathunderbirdMatch1.0.7

mozillathunderbirdMatch1.0.8

mozillathunderbirdMatch1.5

mozillathunderbirdMatch1.5beta2

mozillathunderbirdMatch1.5.0.1

mozillathunderbirdMatch1.5.0.2

mozillathunderbirdMatch1.5.0.4

mozillathunderbirdMatch1.5.0.7

VendorProductVersionCPE
mozillathunderbird1.5cpe:/a:mozilla:thunderbird:1.5:beta2::
mozillafirefox1.5.0.1cpe:/a:mozilla:firefox:1.5.0.1:::
mozillaseamonkey1.0cpe:/a:mozilla:seamonkey:1.0:::
mozillafirefox1.5.0.2cpe:/a:mozilla:firefox:1.5.0.2:::
mozillathunderbird1.5cpe:/a:mozilla:thunderbird:1.5:::
mozillathunderbird1.0.2cpe:/a:mozilla:thunderbird:1.0.2:::
mozillafirefox1.5.0.6cpe:/a:mozilla:firefox:1.5.0.6:::
mozillathunderbird1.0.7cpe:/a:mozilla:thunderbird:1.0.7:::
mozillafirefox1.5.0.4cpe:/a:mozilla:firefox:1.5.0.4:::
mozillathunderbird1.5.0.7cpe:/a:mozilla:thunderbird:1.5.0.7:::

Vendor	Product	Version	CPE
mozilla	thunderbird	1.5	cpe:/a:mozilla:thunderbird:1.5:beta2::
mozilla	firefox	1.5.0.1	cpe:/a:mozilla:firefox:1.5.0.1:::
mozilla	seamonkey	1.0	cpe:/a:mozilla:seamonkey:1.0:::
mozilla	firefox	1.5.0.2	cpe:/a:mozilla:firefox:1.5.0.2:::
mozilla	thunderbird	1.5	cpe:/a:mozilla:thunderbird:1.5:::
mozilla	thunderbird	1.0.2	cpe:/a:mozilla:thunderbird:1.0.2:::
mozilla	firefox	1.5.0.6	cpe:/a:mozilla:firefox:1.5.0.6:::
mozilla	thunderbird	1.0.7	cpe:/a:mozilla:thunderbird:1.0.7:::
mozilla	firefox	1.5.0.4	cpe:/a:mozilla:firefox:1.5.0.4:::
mozilla	thunderbird	1.5.0.7	cpe:/a:mozilla:thunderbird:1.5.0.7:::

Rows per page:

1-10 of 281

References

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P

rhn.redhat.com/errata/RHSA-2006-0733.html

rhn.redhat.com/errata/RHSA-2006-0734.html

rhn.redhat.com/errata/RHSA-2006-0735.html

secunia.com/advisories/22066

secunia.com/advisories/22722

secunia.com/advisories/22727

secunia.com/advisories/22737

secunia.com/advisories/22763

secunia.com/advisories/22770

secunia.com/advisories/22774

secunia.com/advisories/22815

secunia.com/advisories/22817

secunia.com/advisories/22929

secunia.com/advisories/22965

secunia.com/advisories/22980

secunia.com/advisories/23009

secunia.com/advisories/23013

secunia.com/advisories/23197

secunia.com/advisories/23202

secunia.com/advisories/23235

secunia.com/advisories/23263

secunia.com/advisories/23287

secunia.com/advisories/23297

secunia.com/advisories/24711

secunia.com/advisories/27603

security.gentoo.org/glsa/glsa-200612-06.xml

security.gentoo.org/glsa/glsa-200612-07.xml

security.gentoo.org/glsa/glsa-200612-08.xml

securitytracker.com/id?1017177

securitytracker.com/id?1017178

securitytracker.com/id?1017179

sunsolve.sun.com/search/document.do?assetkey=1-26-103139-1

sunsolve.sun.com/search/document.do?assetkey=1-66-201335-1

support.avaya.com/elmodocs2/security/ASA-2006-246.htm

www.debian.org/security/2006/dsa-1224

www.debian.org/security/2006/dsa-1225

www.debian.org/security/2006/dsa-1227

www.kb.cert.org/vuls/id/390480

www.mandriva.com/security/advisories?name=MDKSA-2006:205

www.mandriva.com/security/advisories?name=MDKSA-2006:206

www.mozilla.org/security/announce/2006/mfsa2006-65.html

www.novell.com/linux/security/advisories/2006_68_mozilla.html

www.securityfocus.com/archive/1/451099/100/0/threaded

www.securityfocus.com/bid/20957

www.ubuntu.com/usn/usn-381-1

www.ubuntu.com/usn/usn-382-1

www.us-cert.gov/cas/techalerts/TA06-312A.html

www.vupen.com/english/advisories/2006/3748

www.vupen.com/english/advisories/2006/4387

www.vupen.com/english/advisories/2007/1198

www.vupen.com/english/advisories/2007/3821

www.vupen.com/english/advisories/2008/0083

www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742

bugzilla.mozilla.org/show_bug.cgi?id=349527

bugzilla.mozilla.org/show_bug.cgi?id=350238

bugzilla.mozilla.org/show_bug.cgi?id=351116

bugzilla.mozilla.org/show_bug.cgi?id=351973

bugzilla.mozilla.org/show_bug.cgi?id=352271

bugzilla.mozilla.org/show_bug.cgi?id=352606

bugzilla.mozilla.org/show_bug.cgi?id=353165

bugzilla.mozilla.org/show_bug.cgi?id=354145

bugzilla.mozilla.org/show_bug.cgi?id=354151

exchange.xforce.ibmcloud.com/vulnerabilities/30096

issues.rpath.com/browse/RPL-765

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11408

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.5

Confidence

Low

EPSS

0.08

Percentile

94.3%

JSON

Related for CVE-2006-5748