CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
Percentile
99.7%
Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temporary variable while it is still being used during the creation of a new Function object.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 999 | all | firefox | < 1.5.dfsg+1.5.0.5-1 | firefox_1.5.dfsg+1.5.0.5-1_all.deb |
Debian | 12 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 11 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 999 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 13 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |