Lucene search

Mozilla FoundationMFSA2006-32

HistoryJun 01, 2006 - 12:00 a.m.

Fixes for crashes with potential memory corruption (rv:1.8.0.4) — Mozilla

2006-06-0100:00:00

Mozilla Foundation

www.mozilla.org

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

Mozilla team members discovered several crashes during testing of the browser engine showing evidence of memory corruption that we presume is exploitable.

Affected configurations

Vulners

Node

mozillafirefoxRange<1.5.0.4

mozillaseamonkeyRange<1.0.2

mozillathunderbirdRange<1.5.0.4

CPENameOperatorVersion
firefoxlt1.5.0.4
seamonkeylt1.0.2
thunderbirdlt1.5.0.4

Name	Operator	Version
firefox	lt	1.5.0.4
seamonkey	lt	1.0.2
thunderbird	lt	1.5.0.4

References

www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2779

www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2780

bugzilla.mozilla.org/show_bug.cgi?id=324918

bugzilla.mozilla.org/show_bug.cgi?id=325730

bugzilla.mozilla.org/show_bug.cgi?id=326501

bugzilla.mozilla.org/show_bug.cgi?id=326931

bugzilla.mozilla.org/show_bug.cgi?id=327712

bugzilla.mozilla.org/show_bug.cgi?id=329219

bugzilla.mozilla.org/show_bug.cgi?id=329982

bugzilla.mozilla.org/show_bug.cgi?id=330818

bugzilla.mozilla.org/show_bug.cgi?id=332971

bugzilla.mozilla.org/show_bug.cgi?id=335535

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

Related for MFSA2006-32