Lucene search
Mozilla FoundationMFSA2006-73HistoryDec 19, 2006 - 12:00 a.m.
Mozilla SVG Processing Remote Code Execution — Mozilla
2006-12-1900:00:00
Mozilla Foundation
www.mozilla.org
16
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.921
Percentile
99.0%
Appending an SVG comment DOM node from one document into another type of document such as HTML in some cases results in a crash due to memory corruption that can be exploited to run arbitrary code.
Affected configurations
Node
mozillafirefoxRange<1.5.0.9
ORmozillafirefoxRange<2.0.0.1
ORmozillaseamonkeyRange<1.0.7
Related
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:12:24
zdi
zdi
Mozilla Firefox SVG Processing Remote Code Execution Vulnerability
2006-12-19 00:00:00
securityvulns
securityvulns
[Full-disclosure] ZDI-06-051: Mozilla Firefox SVG Processing Remote Code Execution Vulnerability
2006-12-20 00:00:00
Mozilla Foundation Security Advisory 2006-73
2006-12-20 00:00:00
cve
cve
CVE-2006-6504
2006-12-20 01:28:00
debiancve
debiancve
CVE-2006-6504
2006-12-20 01:28:00
cert
cert
Mozilla SVG memory corruption vulnerability
2006-12-20 00:00:00
cvelist
cvelist
CVE-2006-6504
2006-12-20 01:00:00
checkpoint_advisories
checkpoint_advisories
ubuntucve
ubuntucve
CVE-2006-6504
2006-12-20 00:00:00
nvd
nvd
CVE-2006-6504
2006-12-20 01:28:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: firefox-1.5.0.9-1.fc5
2006-12-22 20:21:55
[SECURITY] Fedora Core 6 Update: firefox-1.5.0.9-1.fc5
2006-12-21 22:02:27
[SECURITY] Fedora Core 5 Update: thunderbird-1.5.0.9-2.fc5
2007-01-02 20:23:31
nessus
nessus
Oracle Linux 4 : firefox (ELSA-2006-0758)
2013-07-12 00:00:00
Fedora Core 5 : firefox-1.5.0.9-1.fc5 (2006-1499)
2007-01-17 00:00:00
Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:010)
2007-02-18 00:00:00
oraclelinux
oraclelinux
Critical firefox security update
2006-12-20 00:00:00
Critical thunderbird security update
2006-12-20 00:00:00
Critical seamonkey security update
2006-12-20 00:00:00
centos
centos
firefox security update
2006-12-23 11:43:06
devhelp, seamonkey security update
2006-12-20 15:44:06
seamonkey security update
2006-12-20 05:41:20
openvas
openvas
Mandriva Update for mozilla-firefox MDKSA-2007:010 (mozilla-firefox)
2009-04-09 00:00:00
Mandriva Update for mozilla-firefox MDKSA-2007:010 (mozilla-firefox)
2009-04-09 00:00:00
Fedora Update for thunderbird FEDORA-2006-004
2009-02-27 00:00:00
redhat
redhat
(RHSA-2006:0758) Critical: firefox security update
2006-12-19 00:00:00
(RHSA-2006:0759) Critical: seamonkey security update
2006-12-19 00:00:00
(RHSA-2006:0760) Critical: thunderbird security update
2006-12-19 00:00:00
ubuntu
ubuntu
Firefox regression
2007-01-27 00:00:00
Firefox vulnerabilities
2007-01-03 00:00:00
Firefox vulnerabilities
2007-01-03 00:00:00
gentoo
gentoo
SeaMonkey: Multiple vulnerabilities
2007-01-10 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2007-01-04 00:00:00
suse
suse
remote denial of service in mozilla
2007-01-12 14:08:00
remote code execution in MozillaFirefox,MozillaThunderbird
2006-12-29 15:41:46
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.921
Percentile
99.0%
Related for MFSA2006-73