5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.969 High
EPSS
Percentile
99.7%
Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temporary variable while it is still being used during the creation of a new Function object.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 999 | all | firefox | < 1.5.dfsg+1.5.0.5-1 | firefox_1.5.dfsg+1.5.0.5-1_all.deb |
Debian | 12 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 11 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 10 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |
Debian | 999 | all | thunderbird | < 1.5.0.5-1 | thunderbird_1.5.0.5-1_all.deb |