11 matches found
Mozilla Firefox Javascript XBL.method.eval Code Execution - Ver2 (CVE-2006-1735)
A code execution vulnerability has been reported in Mozilla Firefox. A remote attacker could trigger this vulnerability by using an eval in an XBL method binding XBL.method.eval to create Javascript functions that are compiled with extra privileges. Successful exploitation of this vulnerability...
Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)
The remote host is missing updates announced in advisory GLSA 200605-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)
The remote host is missing updates announced in advisory GLSA 200605-09. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Core 5 : thunderbird-1.5.0.2-1.1.fc5 (2006-490)
Updated thunderbird packages that fix various bugs are now available for Fedora Core 4. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several bugs were found in the way Thunderbird...
Solaris 8 (x86) : 120672-08
Mozilla 1.7x86 for Solaris 8 and 9. Date this patch was last updated by Sun : Sep/02/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Debian DSA-1044-1 : mozilla-firefox - several vulnerabilities
Several security related problems have been discovered in Mozilla Firefox. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2005-4134 Web pages with extremely long titles cause subsequent launches of the browser to appear to 'hang' for up to a few...
Ubuntu 4.10 / 5.04 / 5.10 : mozilla vulnerabilities (USN-275-1)
Web pages with extremely long titles caused subsequent launches of Mozilla browser to hang for up to a few minutes, or caused Mozilla to crash on computers with insufficient memory. CVE-2005-4134 Igor Bukanov discovered that the JavaScript engine did not properly declare some temporary variables...
RHEL 4 : thunderbird (RHSA-2006:0330)
Updated thunderbird packages that fix various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 24 Apr 2006 The erratum text has been updated to include the details of additional issu...
Critical: Red Hat Security Advisory: firefox security update
Updated firefox packages that fix several security bugs are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 24 Apr 2006 The erratum text has been updated to include CVE-2006-0748, an issue fixed by these erratum packages...
CVE-2006-1735
Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding XBL.method.eval to create Javascript functions that are compiled with extra...
CVE-2006-1735
CVE-2006-1735 affects Mozilla Firefox and Thunderbird 1.x prior to 1.5 and 1.0.x prior to 1.0.8, Mozilla Suite prior to 1.7.13, and SeaMonkey prior to 1.0. The vulnerability arises from using an eval in an XBL method binding (XBL.method.eval) to create Javascript functions that are compiled with ...