[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2006-1730

Date: (C)2006-04-14   (M)2017-10-12
 
CVSS Score: 9.3Access Vector: NETWORK
Exploitability Subscore: 8.6Access Complexity: MEDIUM
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow.

Reference:
SECTRACK-1015915
SECTRACK-1015916
SECTRACK-1015917
SECTRACK-1015918
SUNALERT-102550
BID-17516
SECUNIA-19631
SECUNIA-19649
SECUNIA-19696
SECUNIA-19714
SECUNIA-19721
SECUNIA-19729
SECUNIA-19746
SECUNIA-19759
SECUNIA-19780
SECUNIA-19794
SECUNIA-19811
SECUNIA-19821
SECUNIA-19823
SECUNIA-19852
SECUNIA-19862
SECUNIA-19863
SECUNIA-19902
SECUNIA-19941
SECUNIA-19950
SECUNIA-20051
20060404-01-U
http://www.securityfocus.com/archive/1/archive/1/431060/100/0/threaded
SECUNIA-21033
SECUNIA-21622
SECUNIA-22065
SECUNIA-22066
SUNALERT-228526
SREASON-720
ADV-2006-1356
ADV-2006-3391
ADV-2006-3748
ADV-2006-3749
ADV-2008-0083
DSA-1044
DSA-1046
DSA-1051
FEDORA-2006-410
FEDORA-2006-411
FLSA:189137-1
FLSA:189137-2
GLSA-200604-12
GLSA-200604-18
GLSA-200605-09
HPSBTU02118
HPSBUX02153
HPSBUX02156
MDKSA-2006:075
MDKSA-2006:076
MDKSA-2006:078
RHSA-2006:0328
RHSA-2006:0329
RHSA-2006:0330
SCOSA-2006.26
SSRT061145
SSRT061158
SSRT061181
SSRT061236
SUSE-SA:2006:004
SUSE-SA:2006:021
SUSE-SA:2006:022
TA06-107A
USN-271-1
USN-275-1
USN-276-1
VU#179014
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm
http://www.mozilla.org/security/announce/2006/mfsa2006-22.html
http://www.zerodayinitiative.com/advisories/ZDI-06-010.html
mozilla-css-letterspacing-overflow(25826)

CPE    31
cpe:/a:mozilla:mozilla_suite:1.7.7
cpe:/a:mozilla:mozilla_suite:1.7.8
cpe:/a:mozilla:mozilla_suite:1.7.6
cpe:/a:mozilla:mozilla_suite:1.7.10
...
CWE    1
CWE-189
OVAL    1
oval:org.mitre.oval:def:1614

© 2013 SecPod Technologies