4 matches found
Mozilla Firefox Javascript Engine XML Parser Integer Overflow - Ver2 (CVE-2006-0297)
An integer overflow vulnerability has been reported in certain versions of Mozilla products. A remote attacker could exploit this vulnerability by enticing the victim to visit a malicious web page. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary co...
Mozilla Products Graphics and XML Features Integer Overflows (CVE-2006-0297)
An integer overflow vulnerability has been reported in multiple versions of Mozilla products. The vulnerability is due to improper validation of XML property values when parsing images in SVG format. A remote attacker may leverage the vulnerability by enticing the victim to visit a malicious web...
Solaris 8 (x86) : 120672-08
Mozilla 1.7x86 for Solaris 8 and 9. Date this patch was last updated by Sun : Sep/02/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
CVE-2006-0297
CVE-2006-0297 involves integer overflow vulnerabilities in Mozilla-based products. Affects Mozilla Firefox 1.5, Thunderbird 1.5, and SeaMonkey before 1.0 when JavaScript is enabled in mail. The issues stem from three vulnerable code paths: (1) EscapeAttributeValue in jsxml.c (E4X), (2) nsSVGCairo...